Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2022-22816 (GCVE-0-2022-22816)
Vulnerability from cvelistv5
Published
2022-01-07 00:00
Modified
2024-08-03 03:21
Severity ?
EPSS score ?
Summary
path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-03T03:21:49.162Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { tags: [ "x_transferred", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { tags: [ "x_transferred", ], url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { name: "[debian-lts-announce] 20220123 [SECURITY] [DLA 2893-1] pillow security update", tags: [ "mailing-list", "x_transferred", ], url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { name: "DSA-5053", tags: [ "vendor-advisory", "x_transferred", ], url: "https://www.debian.org/security/2022/dsa-5053", }, { name: "GLSA-202211-10", tags: [ "vendor-advisory", "x_transferred", ], url: "https://security.gentoo.org/glsa/202211-10", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], descriptions: [ { lang: "en", value: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2022-11-22T00:00:00", orgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", shortName: "mitre", }, references: [ { url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { name: "[debian-lts-announce] 20220123 [SECURITY] [DLA 2893-1] pillow security update", tags: [ "mailing-list", ], url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { name: "DSA-5053", tags: [ "vendor-advisory", ], url: "https://www.debian.org/security/2022/dsa-5053", }, { name: "GLSA-202211-10", tags: [ "vendor-advisory", ], url: "https://security.gentoo.org/glsa/202211-10", }, ], }, }, cveMetadata: { assignerOrgId: "8254265b-2729-46b6-b9e3-3dfca2d5bfca", assignerShortName: "mitre", cveId: "CVE-2022-22816", datePublished: "2022-01-07T00:00:00", dateReserved: "2022-01-07T00:00:00", dateUpdated: "2024-08-03T03:21:49.162Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"9.0.0\", \"matchCriteriaId\": \"230E2D17-CE9C-44C0-8EE5-B025D2C147EF\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.\"}, {\"lang\": \"es\", \"value\": \"La funci\\u00f3n path_getbbox en el archivo path.c en Pillow versiones anteriores a 9.0.0, presenta una lectura excesiva del buffer durante la inicializaci\\u00f3n de ImagePath.Path\"}]", id: "CVE-2022-22816", lastModified: "2024-11-21T06:47:30.333", metrics: "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 2.5}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:P/A:P\", \"baseScore\": 6.4, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 4.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}", published: "2022-01-10T14:12:54.813", references: "[{\"url\": \"https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling\", \"source\": \"cve@mitre.org\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202211-10\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2022/dsa-5053\", \"source\": \"cve@mitre.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Release Notes\", \"Vendor Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202211-10\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2022/dsa-5053\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]", sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2022-22816\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2022-01-10T14:12:54.813\",\"lastModified\":\"2024-11-21T06:47:30.333\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.\"},{\"lang\":\"es\",\"value\":\"La función path_getbbox en el archivo path.c en Pillow versiones anteriores a 9.0.0, presenta una lectura excesiva del buffer durante la inicialización de ImagePath.Path\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":3.9,\"impactScore\":2.5}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:P/A:P\",\"baseScore\":6.4,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":4.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.0.0\",\"matchCriteriaId\":\"230E2D17-CE9C-44C0-8EE5-B025D2C147EF\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FA6FEEC2-9F11-4643-8827-749718254FED\"}]}]}],\"references\":[{\"url\":\"https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling\",\"source\":\"cve@mitre.org\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202211-10\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5053\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Release Notes\",\"Vendor Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202211-10\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2022/dsa-5053\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}", }, }
RHSA-2022:0665
Vulnerability from csaf_redhat
Published
2022-02-24 09:55
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0665", url: "https://access.redhat.com/errata/RHSA-2022:0665", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0665.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:37+00:00", generator: { date: "2024-11-13T23:40:37+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0665", initial_release_date: "2022-02-24T09:55:49+00:00", revision_history: [ { date: "2022-02-24T09:55:49+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:55:49+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:37+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.4)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.4::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-14.el8_4.src", product: { name: "python-pillow-0:5.1.1-14.el8_4.src", product_id: "python-pillow-0:5.1.1-14.el8_4.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-14.el8_4?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-14.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", }, product_reference: "python-pillow-0:5.1.1-14.el8_4.src", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:49+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0665", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:49+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0665", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022_0609
Vulnerability from csaf_redhat
Published
2022-02-22 15:58
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0609", url: "https://access.redhat.com/errata/RHSA-2022:0609", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0609.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:29+00:00", generator: { date: "2024-11-13T23:40:29+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0609", initial_release_date: "2022-02-22T15:58:46+00:00", revision_history: [ { date: "2022-02-22T15:58:46+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-22T15:58:46+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:29+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux Client (v. 7)", product: { name: "Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Client Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product: { name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::computenode", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T15:58:46+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0609", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T15:58:46+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0609", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022_0665
Vulnerability from csaf_redhat
Published
2022-02-24 09:55
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0665", url: "https://access.redhat.com/errata/RHSA-2022:0665", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0665.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:37+00:00", generator: { date: "2024-11-13T23:40:37+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0665", initial_release_date: "2022-02-24T09:55:49+00:00", revision_history: [ { date: "2022-02-24T09:55:49+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:55:49+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:37+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.4)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.4::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-14.el8_4.src", product: { name: "python-pillow-0:5.1.1-14.el8_4.src", product_id: "python-pillow-0:5.1.1-14.el8_4.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-14.el8_4?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-14.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", }, product_reference: "python-pillow-0:5.1.1-14.el8_4.src", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:49+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0665", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:49+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0665", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
RHSA-2022:0609
Vulnerability from csaf_redhat
Published
2022-02-22 15:58
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0609", url: "https://access.redhat.com/errata/RHSA-2022:0609", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0609.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:29+00:00", generator: { date: "2024-11-13T23:40:29+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0609", initial_release_date: "2022-02-22T15:58:46+00:00", revision_history: [ { date: "2022-02-22T15:58:46+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-22T15:58:46+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:29+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux Client (v. 7)", product: { name: "Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Client Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product: { name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::computenode", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T15:58:46+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0609", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T15:58:46+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0609", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022_0643
Vulnerability from csaf_redhat
Published
2022-02-22 17:47
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0643", url: "https://access.redhat.com/errata/RHSA-2022:0643", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0643.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:22+00:00", generator: { date: "2024-11-13T23:40:22+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0643", initial_release_date: "2022-02-22T17:47:37+00:00", revision_history: [ { date: "2022-02-22T17:47:37+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-22T17:47:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:22+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder (v. 8)", product: { name: "Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-18.el8_5.src", product: { name: "python-pillow-0:5.1.1-18.el8_5.src", product_id: "python-pillow-0:5.1.1-18.el8_5.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-18.el8_5?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product_id: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-doc@5.1.1-18.el8_5?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-18.el8_5.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", }, product_reference: "python-pillow-0:5.1.1-18.el8_5.src", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", }, product_reference: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-18.el8_5.src as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", }, product_reference: "python-pillow-0:5.1.1-18.el8_5.src", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", }, product_reference: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22815", cwe: { id: "CWE-909", name: "Missing Initialization of Resource", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042511", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to improperly initializing the ImagePath. This flaw allows an attacker to access unauthorized memory that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22815", }, { category: "external", summary: "RHBZ#2042511", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042511", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22815", url: "https://www.cve.org/CVERecord?id=CVE-2022-22815", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22815", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22815", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
RHSA-2022:0669
Vulnerability from csaf_redhat
Published
2022-02-24 09:38
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0669", url: "https://access.redhat.com/errata/RHSA-2022:0669", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0669.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:52+00:00", generator: { date: "2024-11-13T23:40:52+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0669", initial_release_date: "2022-02-24T09:38:52+00:00", revision_history: [ { date: "2022-02-24T09:38:52+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:38:52+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:52+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product: { name: "Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_e4s:8.1::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-13.el8_1.src", product: { name: "python-pillow-0:5.1.1-13.el8_1.src", product_id: "python-pillow-0:5.1.1-13.el8_1.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-13.el8_1?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-13.el8_1.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", }, product_reference: "python-pillow-0:5.1.1-13.el8_1.src", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:38:52+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0669", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:38:52+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0669", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022:0643
Vulnerability from csaf_redhat
Published
2022-02-22 17:47
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0643", url: "https://access.redhat.com/errata/RHSA-2022:0643", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0643.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:22+00:00", generator: { date: "2024-11-13T23:40:22+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0643", initial_release_date: "2022-02-22T17:47:37+00:00", revision_history: [ { date: "2022-02-22T17:47:37+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-22T17:47:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:22+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder (v. 8)", product: { name: "Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-18.el8_5.src", product: { name: "python-pillow-0:5.1.1-18.el8_5.src", product_id: "python-pillow-0:5.1.1-18.el8_5.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-18.el8_5?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product_id: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-doc@5.1.1-18.el8_5?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-18.el8_5.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", }, product_reference: "python-pillow-0:5.1.1-18.el8_5.src", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", }, product_reference: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-18.el8_5.src as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", }, product_reference: "python-pillow-0:5.1.1-18.el8_5.src", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", }, product_reference: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22815", cwe: { id: "CWE-909", name: "Missing Initialization of Resource", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042511", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to improperly initializing the ImagePath. This flaw allows an attacker to access unauthorized memory that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22815", }, { category: "external", summary: "RHBZ#2042511", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042511", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22815", url: "https://www.cve.org/CVERecord?id=CVE-2022-22815", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22815", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22815", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022_0669
Vulnerability from csaf_redhat
Published
2022-02-24 09:38
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0669", url: "https://access.redhat.com/errata/RHSA-2022:0669", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0669.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:52+00:00", generator: { date: "2024-11-13T23:40:52+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0669", initial_release_date: "2022-02-24T09:38:52+00:00", revision_history: [ { date: "2022-02-24T09:38:52+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:38:52+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:52+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product: { name: "Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_e4s:8.1::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-13.el8_1.src", product: { name: "python-pillow-0:5.1.1-13.el8_1.src", product_id: "python-pillow-0:5.1.1-13.el8_1.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-13.el8_1?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-13.el8_1.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", }, product_reference: "python-pillow-0:5.1.1-13.el8_1.src", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:38:52+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0669", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:38:52+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0669", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022:0665
Vulnerability from csaf_redhat
Published
2022-02-24 09:55
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0665", url: "https://access.redhat.com/errata/RHSA-2022:0665", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0665.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:37+00:00", generator: { date: "2024-11-13T23:40:37+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0665", initial_release_date: "2022-02-24T09:55:49+00:00", revision_history: [ { date: "2022-02-24T09:55:49+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:55:49+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:37+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v.8.4)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.4::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-14.el8_4.src", product: { name: "python-pillow-0:5.1.1-14.el8_4.src", product_id: "python-pillow-0:5.1.1-14.el8_4.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-14.el8_4?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_4?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-14.el8_4.src as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", }, product_reference: "python-pillow-0:5.1.1-14.el8_4.src", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.8.4)", product_id: "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", relates_to_product_reference: "AppStream-8.4.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:49+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0665", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:49+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0665", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.4.0.Z.EUS:python-pillow-0:5.1.1-14.el8_4.src", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_4.x86_64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.aarch64", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.ppc64le", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.s390x", "AppStream-8.4.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_4.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
RHSA-2022:0643
Vulnerability from csaf_redhat
Published
2022-02-22 17:47
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0643", url: "https://access.redhat.com/errata/RHSA-2022:0643", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0643.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:22+00:00", generator: { date: "2024-11-13T23:40:22+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0643", initial_release_date: "2022-02-22T17:47:37+00:00", revision_history: [ { date: "2022-02-22T17:47:37+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-22T17:47:37+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:22+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream (v. 8)", product: { name: "Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::appstream", }, }, }, { category: "product_name", name: "Red Hat CodeReady Linux Builder (v. 8)", product: { name: "Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN", product_identification_helper: { cpe: "cpe:/a:redhat:enterprise_linux:8::crb", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-18.el8_5.src", product: { name: "python-pillow-0:5.1.1-18.el8_5.src", product_id: "python-pillow-0:5.1.1-18.el8_5.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-18.el8_5?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product_id: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk@5.1.1-18.el8_5?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-devel@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product_id: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-18.el8_5?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product_id: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-doc@5.1.1-18.el8_5?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-18.el8_5.src as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", }, product_reference: "python-pillow-0:5.1.1-18.el8_5.src", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", }, product_reference: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)", product_id: "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "AppStream-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-18.el8_5.src as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", }, product_reference: "python-pillow-0:5.1.1-18.el8_5.src", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", }, product_reference: "python3-pillow-doc-0:5.1.1-18.el8_5.noarch", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64 as a component of Red Hat CodeReady Linux Builder (v. 8)", product_id: "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", relates_to_product_reference: "CRB-8.5.0.Z.MAIN", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22815", cwe: { id: "CWE-909", name: "Missing Initialization of Resource", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042511", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to improperly initializing the ImagePath. This flaw allows an attacker to access unauthorized memory that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22815", }, { category: "external", summary: "RHBZ#2042511", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042511", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22815", url: "https://www.cve.org/CVERecord?id=CVE-2022-22815", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22815", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22815", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: improperly initializes ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T17:47:37+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0643", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "AppStream-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-0:5.1.1-18.el8_5.src", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python-pillow-debugsource-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-debuginfo-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-devel-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-doc-0:5.1.1-18.el8_5.noarch", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-0:5.1.1-18.el8_5.x86_64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.aarch64", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.i686", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.ppc64le", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.s390x", "CRB-8.5.0.Z.MAIN:python3-pillow-tk-debuginfo-0:5.1.1-18.el8_5.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022:0609
Vulnerability from csaf_redhat
Published
2022-02-22 15:58
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0609", url: "https://access.redhat.com/errata/RHSA-2022:0609", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0609.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:29+00:00", generator: { date: "2024-11-13T23:40:29+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0609", initial_release_date: "2022-02-22T15:58:46+00:00", revision_history: [ { date: "2022-02-22T15:58:46+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-22T15:58:46+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:29+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux Client (v. 7)", product: { name: "Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Client Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::client", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product: { name: "Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::computenode", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server (v. 7)", product: { name: "Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Server Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::server", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product: { name: "Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7::workstation", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=i686", }, }, }, ], category: "architecture", name: "i686", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=ppc64", }, }, }, ], category: "architecture", name: "ppc64", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-doc@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-qt@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-sane@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_id: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-tk@2.0.0-23.gitd1c6db8.el7_9?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, { category: "product_version", name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-devel@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_id: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@2.0.0-23.gitd1c6db8.el7_9?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client (v. 7)", product_id: "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Client Optional (v. 7)", product_id: "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Client-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux ComputeNode Optional (v. 7)", product_id: "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7ComputeNode-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7)", product_id: "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7)", product_id: "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Server-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation (v. 7)", product_id: "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, { category: "default_component_of", full_product_name: { name: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64 as a component of Red Hat Enterprise Linux Workstation Optional (v. 7)", product_id: "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", }, product_reference: "python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", relates_to_product_reference: "7Workstation-optional-7.9.Z", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T15:58:46+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0609", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-22T15:58:46+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0609", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Client-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Client-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7ComputeNode-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7ComputeNode-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Server-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Server-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.src", "7Workstation-optional-7.9.Z:python-pillow-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-debuginfo-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.i686", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-devel-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-doc-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-qt-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-sane-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.ppc64le", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.s390x", "7Workstation-optional-7.9.Z:python-pillow-tk-0:2.0.0-23.gitd1c6db8.el7_9.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
RHSA-2022:0667
Vulnerability from csaf_redhat
Published
2022-02-24 09:55
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0667", url: "https://access.redhat.com/errata/RHSA-2022:0667", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0667.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:45+00:00", generator: { date: "2024-11-13T23:40:45+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0667", initial_release_date: "2022-02-24T09:55:05+00:00", revision_history: [ { date: "2022-02-24T09:55:05+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:55:05+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:45+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.2::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-14.el8_2.src", product: { name: "python-pillow-0:5.1.1-14.el8_2.src", product_id: "python-pillow-0:5.1.1-14.el8_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-14.el8_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-14.el8_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", }, product_reference: "python-pillow-0:5.1.1-14.el8_2.src", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:05+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0667", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:05+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0667", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022:0669
Vulnerability from csaf_redhat
Published
2022-02-24 09:38
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0669", url: "https://access.redhat.com/errata/RHSA-2022:0669", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0669.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:52+00:00", generator: { date: "2024-11-13T23:40:52+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0669", initial_release_date: "2022-02-24T09:38:52+00:00", revision_history: [ { date: "2022-02-24T09:38:52+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:38:52+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:52+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product: { name: "Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_e4s:8.1::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-13.el8_1.src", product: { name: "python-pillow-0:5.1.1-13.el8_1.src", product_id: "python-pillow-0:5.1.1-13.el8_1.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-13.el8_1?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-13.el8_1?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-13.el8_1?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-13.el8_1.src as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", }, product_reference: "python-pillow-0:5.1.1-13.el8_1.src", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v. 8.1)", product_id: "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", relates_to_product_reference: "AppStream-8.1.0.Z.E4S", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:38:52+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0669", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:38:52+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0669", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.1.0.Z.E4S:python-pillow-0:5.1.1-13.el8_1.src", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python-pillow-debugsource-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-debuginfo-0:5.1.1-13.el8_1.x86_64", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.ppc64le", "AppStream-8.1.0.Z.E4S:python3-pillow-tk-debuginfo-0:5.1.1-13.el8_1.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022_0667
Vulnerability from csaf_redhat
Published
2022-02-24 09:55
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0667", url: "https://access.redhat.com/errata/RHSA-2022:0667", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0667.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:45+00:00", generator: { date: "2024-11-13T23:40:45+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0667", initial_release_date: "2022-02-24T09:55:05+00:00", revision_history: [ { date: "2022-02-24T09:55:05+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:55:05+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:45+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.2::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-14.el8_2.src", product: { name: "python-pillow-0:5.1.1-14.el8_2.src", product_id: "python-pillow-0:5.1.1-14.el8_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-14.el8_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-14.el8_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", }, product_reference: "python-pillow-0:5.1.1-14.el8_2.src", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:05+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0667", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:05+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0667", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
rhsa-2022:0667
Vulnerability from csaf_redhat
Published
2022-02-24 09:55
Modified
2024-11-13 23:40
Summary
Red Hat Security Advisory: python-pillow security update
Notes
Topic
An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.
Security Fix(es):
* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)
* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities.\n\nSecurity Fix(es):\n\n* python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions (CVE-2022-22817)\n\n* python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c (CVE-2022-22816)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2022:0667", url: "https://access.redhat.com/errata/RHSA-2022:0667", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#important", url: "https://access.redhat.com/security/updates/classification/#important", }, { category: "external", summary: "2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2022/rhsa-2022_0667.json", }, ], title: "Red Hat Security Advisory: python-pillow security update", tracking: { current_release_date: "2024-11-13T23:40:45+00:00", generator: { date: "2024-11-13T23:40:45+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.0", }, }, id: "RHSA-2022:0667", initial_release_date: "2022-02-24T09:55:05+00:00", revision_history: [ { date: "2022-02-24T09:55:05+00:00", number: "1", summary: "Initial version", }, { date: "2022-02-24T09:55:05+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-13T23:40:45+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product: { name: "Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS", product_identification_helper: { cpe: "cpe:/a:redhat:rhel_eus:8.2::appstream", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "python-pillow-0:5.1.1-14.el8_2.src", product: { name: "python-pillow-0:5.1.1-14.el8_2.src", product_id: "python-pillow-0:5.1.1-14.el8_2.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow@5.1.1-14.el8_2?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-pillow-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product_id: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debugsource@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-pillow-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, { category: "product_version", name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product_id: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pillow-tk-debuginfo@5.1.1-14.el8_2?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-pillow-0:5.1.1-14.el8_2.src as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", }, product_reference: "python-pillow-0:5.1.1-14.el8_2.src", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, { category: "default_component_of", full_product_name: { name: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v. 8.2)", product_id: "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", }, product_reference: "python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", relates_to_product_reference: "AppStream-8.2.0.Z.EUS", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", cwe: { id: "CWE-125", name: "Out-of-bounds Read", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042522", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to improper initialization of image paths, leading to a buffer over-read and improper initialization. This flaw allows an attacker to unauthorized memory access that causes memory access errors, incorrect results, or crashes.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImagePath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "RHBZ#2042522", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042522", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22816", url: "https://www.cve.org/CVERecord?id=CVE-2022-22816", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:05+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0667", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-pillow: buffer over-read during initialization of ImagePath.Path in path_getbbox() in path.c", }, { cve: "CVE-2022-22817", cwe: { id: "CWE-77", name: "Improper Neutralization of Special Elements used in a Command ('Command Injection')", }, discovery_date: "2022-01-10T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2042527", }, ], notes: [ { category: "description", text: "A flaw was found in python-pillow. The vulnerability occurs due to Improper Neutralization, leading to command injection. This flaw allows an attacker to externally-influenced input commands that modify the intended command.", title: "Vulnerability description", }, { category: "summary", text: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", title: "Vulnerability summary", }, { category: "other", text: "Red Hat Quay ships a vulnerable version of Pillow as a dependency of xhtml2pdf. The xhtml2pdf package is used in the invoice generation feature of Quay, however, the vulnerable ImageMath module is not used by xhtml2pdf. Therefore impact for Quay is rated Low.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "RHBZ#2042527", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2042527", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2022-22817", url: "https://www.cve.org/CVERecord?id=CVE-2022-22817", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22817", }, { category: "external", summary: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, ], release_date: "2022-01-02T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2022-02-24T09:55:05+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2022:0667", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 9.8, baseSeverity: "CRITICAL", confidentialityImpact: "HIGH", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "AppStream-8.2.0.Z.EUS:python-pillow-0:5.1.1-14.el8_2.src", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python-pillow-debugsource-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-debuginfo-0:5.1.1-14.el8_2.x86_64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.aarch64", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.ppc64le", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.s390x", "AppStream-8.2.0.Z.EUS:python3-pillow-tk-debuginfo-0:5.1.1-14.el8_2.x86_64", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions", }, ], }
suse-su-2024:1673-2
Vulnerability from csaf_suse
Published
2024-06-13 09:22
Modified
2024-06-13 09:22
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following issues:
- Fixed ImagePath.Path array handling (bsc#1194552, CVE-2022-22815, bsc#1194551, CVE-2022-22816)
- Use snprintf instead of sprintf (bsc#1188574, CVE-2021-34552)
- Fix Memory DOS in Icns, Ico and Blp Image Plugins. (bsc#1183110, CVE-2021-27921, bsc#1183108, CVE-2021-27922, bsc#1183107, CVE-2021-27923)
- Fix OOB read in SgiRleDecode.c (bsc#1183102, CVE-2021-25293)
- Use more specific regex chars to prevent ReDoS (bsc#1183101, CVE-2021-25292)
- Fix negative size read in TiffDecode.c (bsc#1183105, CVE-2021-25290)
- Raise ValueError if color specifier is too long (bsc#1190229, CVE-2021-23437)
- Incorrect error code checking in TiffDecode.c (bsc#1183103, CVE-2021-25289)
- OOB Write in TiffDecode.c (bsc#1180833, CVE-2020-35654)
Patchnames
SUSE-2024-1673,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1673
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "This update for python-Pillow fixes the following issues:\n\n- Fixed ImagePath.Path array handling (bsc#1194552, CVE-2022-22815, bsc#1194551, CVE-2022-22816)\n- Use snprintf instead of sprintf (bsc#1188574, CVE-2021-34552)\n- Fix Memory DOS in Icns, Ico and Blp Image Plugins. (bsc#1183110, CVE-2021-27921, bsc#1183108, CVE-2021-27922, bsc#1183107, CVE-2021-27923)\n- Fix OOB read in SgiRleDecode.c (bsc#1183102, CVE-2021-25293)\n- Use more specific regex chars to prevent ReDoS (bsc#1183101, CVE-2021-25292)\n- Fix negative size read in TiffDecode.c (bsc#1183105, CVE-2021-25290)\n- Raise ValueError if color specifier is too long (bsc#1190229, CVE-2021-23437)\n- Incorrect error code checking in TiffDecode.c (bsc#1183103, CVE-2021-25289)\n- OOB Write in TiffDecode.c (bsc#1180833, CVE-2020-35654)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2024-1673,SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2024-1673", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1673-2.json", }, { category: "self", summary: "URL for SUSE-SU-2024:1673-2", url: "https://www.suse.com/support/update/announcement/2024/suse-su-20241673-2/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2024:1673-2", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018714.html", }, { category: "self", summary: "SUSE Bug 1180833", url: "https://bugzilla.suse.com/1180833", }, { category: "self", summary: "SUSE Bug 1183101", url: "https://bugzilla.suse.com/1183101", }, { category: "self", summary: "SUSE Bug 1183102", url: "https://bugzilla.suse.com/1183102", }, { category: "self", summary: "SUSE Bug 1183103", url: "https://bugzilla.suse.com/1183103", }, { category: "self", summary: "SUSE Bug 1183105", url: "https://bugzilla.suse.com/1183105", }, { category: "self", summary: "SUSE Bug 1183107", url: "https://bugzilla.suse.com/1183107", }, { category: "self", summary: "SUSE Bug 1183108", url: "https://bugzilla.suse.com/1183108", }, { category: "self", summary: "SUSE Bug 1183110", url: "https://bugzilla.suse.com/1183110", }, { category: "self", summary: "SUSE Bug 1188574", url: "https://bugzilla.suse.com/1188574", }, { category: "self", summary: "SUSE Bug 1190229", url: "https://bugzilla.suse.com/1190229", }, { category: "self", summary: "SUSE Bug 1194551", url: "https://bugzilla.suse.com/1194551", }, { category: "self", summary: "SUSE Bug 1194552", url: "https://bugzilla.suse.com/1194552", }, { category: "self", summary: "SUSE CVE CVE-2020-35654 page", url: "https://www.suse.com/security/cve/CVE-2020-35654/", }, { category: "self", summary: "SUSE CVE CVE-2021-23437 page", url: "https://www.suse.com/security/cve/CVE-2021-23437/", }, { category: "self", summary: "SUSE CVE CVE-2021-25289 page", url: "https://www.suse.com/security/cve/CVE-2021-25289/", }, { category: "self", summary: "SUSE CVE CVE-2021-25290 page", url: "https://www.suse.com/security/cve/CVE-2021-25290/", }, { category: "self", summary: "SUSE CVE CVE-2021-25292 page", url: "https://www.suse.com/security/cve/CVE-2021-25292/", }, { category: "self", summary: "SUSE CVE CVE-2021-25293 page", url: "https://www.suse.com/security/cve/CVE-2021-25293/", }, { category: "self", summary: "SUSE CVE CVE-2021-27921 page", url: "https://www.suse.com/security/cve/CVE-2021-27921/", }, { category: "self", summary: "SUSE CVE CVE-2021-27922 page", url: "https://www.suse.com/security/cve/CVE-2021-27922/", }, { category: "self", summary: "SUSE CVE CVE-2021-27923 page", url: "https://www.suse.com/security/cve/CVE-2021-27923/", }, { category: "self", summary: "SUSE CVE CVE-2021-34552 page", url: "https://www.suse.com/security/cve/CVE-2021-34552/", }, { category: "self", summary: "SUSE CVE CVE-2022-22815 page", url: "https://www.suse.com/security/cve/CVE-2022-22815/", }, { category: "self", summary: "SUSE CVE CVE-2022-22816 page", url: "https://www.suse.com/security/cve/CVE-2022-22816/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2024-06-13T09:22:50Z", generator: { date: "2024-06-13T09:22:50Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2024:1673-2", initial_release_date: "2024-06-13T09:22:50Z", revision_history: [ { date: "2024-06-13T09:22:50Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", product_id: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.i586", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.i586", product_id: "python3-Pillow-7.2.0-150300.3.15.1.i586", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.i586", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.i586", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", product_id: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.s390x", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.s390x", product_id: "python3-Pillow-7.2.0-150300.3.15.1.s390x", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", product_id: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Package Hub 15 SP6", product: { name: "SUSE Linux Enterprise Module for Package Hub 15 SP6", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP6", product_identification_helper: { cpe: "cpe:/o:suse:packagehub:15:sp6", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.aarch64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le as component of SUSE Linux Enterprise Module for Package Hub 15 SP6", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.s390x as component of SUSE Linux Enterprise Module for Package Hub 15 SP6", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP6", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.x86_64 as component of SUSE Linux Enterprise Module for Package Hub 15 SP6", product_id: "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Package Hub 15 SP6", }, ], }, vulnerabilities: [ { cve: "CVE-2020-35654", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35654", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35654", url: "https://www.suse.com/security/cve/CVE-2020-35654", }, { category: "external", summary: "SUSE Bug 1180833 for CVE-2020-35654", url: "https://bugzilla.suse.com/1180833", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2020-35654", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2020-35654", }, { cve: "CVE-2021-23437", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-23437", }, ], notes: [ { category: "general", text: "The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-23437", url: "https://www.suse.com/security/cve/CVE-2021-23437", }, { category: "external", summary: "SUSE Bug 1190229 for CVE-2021-23437", url: "https://bugzilla.suse.com/1190229", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-23437", }, { cve: "CVE-2021-25289", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25289", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25289", url: "https://www.suse.com/security/cve/CVE-2021-25289", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2021-25289", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "critical", }, ], title: "CVE-2021-25289", }, { cve: "CVE-2021-25290", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25290", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25290", url: "https://www.suse.com/security/cve/CVE-2021-25290", }, { category: "external", summary: "SUSE Bug 1183105 for CVE-2021-25290", url: "https://bugzilla.suse.com/1183105", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-25290", }, { cve: "CVE-2021-25292", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25292", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS (ReDoS) attack via a crafted PDF file because of a catastrophic backtracking regex.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25292", url: "https://www.suse.com/security/cve/CVE-2021-25292", }, { category: "external", summary: "SUSE Bug 1183101 for CVE-2021-25292", url: "https://bugzilla.suse.com/1183101", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-25292", }, { cve: "CVE-2021-25293", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25293", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25293", url: "https://www.suse.com/security/cve/CVE-2021-25293", }, { category: "external", summary: "SUSE Bug 1183102 for CVE-2021-25293", url: "https://bugzilla.suse.com/1183102", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-25293", }, { cve: "CVE-2021-27921", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27921", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27921", url: "https://www.suse.com/security/cve/CVE-2021-27921", }, { category: "external", summary: "SUSE Bug 1183110 for CVE-2021-27921", url: "https://bugzilla.suse.com/1183110", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-27921", }, { cve: "CVE-2021-27922", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27922", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27922", url: "https://www.suse.com/security/cve/CVE-2021-27922", }, { category: "external", summary: "SUSE Bug 1183108 for CVE-2021-27922", url: "https://bugzilla.suse.com/1183108", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-27922", }, { cve: "CVE-2021-27923", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27923", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27923", url: "https://www.suse.com/security/cve/CVE-2021-27923", }, { category: "external", summary: "SUSE Bug 1183107 for CVE-2021-27923", url: "https://bugzilla.suse.com/1183107", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-27923", }, { cve: "CVE-2021-34552", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-34552", }, ], notes: [ { category: "general", text: "Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-34552", url: "https://www.suse.com/security/cve/CVE-2021-34552", }, { category: "external", summary: "SUSE Bug 1188574 for CVE-2021-34552", url: "https://bugzilla.suse.com/1188574", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "important", }, ], title: "CVE-2021-34552", }, { cve: "CVE-2022-22815", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22815", }, ], notes: [ { category: "general", text: "path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22815", url: "https://www.suse.com/security/cve/CVE-2022-22815", }, { category: "external", summary: "SUSE Bug 1194552 for CVE-2022-22815", url: "https://bugzilla.suse.com/1194552", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "low", }, ], title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22816", }, ], notes: [ { category: "general", text: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22816", url: "https://www.suse.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "SUSE Bug 1194551 for CVE-2022-22816", url: "https://bugzilla.suse.com/1194551", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.s390x", "SUSE Linux Enterprise Module for Package Hub 15 SP6:python3-Pillow-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-13T09:22:50Z", details: "low", }, ], title: "CVE-2022-22816", }, ], }
suse-su-2022:1729-1
Vulnerability from csaf_suse
Published
2022-05-18 14:55
Modified
2022-05-18 14:55
Summary
Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud
Notes
Title of the patch
Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud
Description of the patch
This update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud fixes the following issues:
Security fixes included on the update:
ardana-barbican:
- Update policies to protect container secret access (SOC-11621)
- Update policies to protect secret metadata access (SOC-11620)
openstack-neutron:
- CVE-2021-40085: Fixed arbitrary dnsmasq reconfiguration via extra_dhcp_opts (bsc#1189794).
rubygem-sinatra:
- CVE-2022-29970: Fixed path traversal possible outside of public_dir when serving static files (bsc#1199138).
python-XStatic-jquery-ui:
- CVE-2021-41182: Fixed XSS in the `altField` option of the Datepicker widget (bsc#1192070)
- CVE-2021-41183: Fixed XSS in the `of` option of the `.position()` util (bsc#1192073)
- CVE-2021-41184: Fixed XSS in `*Text` options of the Datepicker widget (bsc#1192075)
python-lxml:
- CVE-2018-19787: Fixed that the lxml.html.clean module does remove javascript in lxml/html/clean.py (bsc#1118088).
- CVE-2020-27783: Fixed mXSS due to the use of improper parser (bsc#1179534).
- CVE-2021-28957: Fixed missing input sanitization for formaction HTML5 attributes that may have led to XSS (bsc#1184177).
- CVE-2021-43818: Fixed HTML Cleaner that allowed crafted and SVG embedded scripts to pass through (bsc#1193752).
openstack-barbican:
- CVE-2022-23451: Disallows authenticated users to add/modify/delete arbitrary metadata on any secret (bsc#1194952).
- CVE-2022-23452: Disallows anyone with an admin role to add their secrets to a different project's containers (bsc#1194954).
grafana:
- CVE-2021-44716: Fixed net/http: limit growth of header canonicalization cache (bsc#1193597).
openstack-keystone:
- CVE-2021-38155: Fixed information disclosure during account locking (bsc#1189390).
Non-security fixes included on the update:
Changes in ardana-barbican:
- Update to version 9.0+git.1644879908.8a641c1:
* Update policies to protect container secret access (SOC-11621)
- Update to version 9.0+git.1643052417.9a3348e:
* update policies to protect secret metadata access (SOC-11620)
Changes in grafana:
- Add CVE-2021-43813.patch (bsc#1193688, CVE-2021-43813)
* directory traversal vulnerability for .md files
- Bump Go to 1.16 (bsc#1193597, CVE-2021-44716)
* Fix Go net/http: limit growth of header canonicalization cache
Changes in openstack-barbican:
- Add patches (0001-Fix-RBAC-and-ACL-access-for-managing-secret-containe.patch
and 0001-Fix-policy-for-adding-a-secret-to-a-container.patch) to fix
the legacy policy rules for adding a secret to a container and removing
a secret from a container. bsc#1194954,CVE-2022-23452
- Add patch (0001-Fix-secret-metadata-access-rules.patch) to fix the
legacy policy rules for accessing secret metadata by checking that
the user making the request is authenticated for the project that
owns the secret. bsc#1194952,CVE-2022-23451
Changes in openstack-cinder:
- Update to version cinder-13.0.10.dev24:
* Correct group:reset\_group\_snapshot\_status policy
Changes in openstack-cinder:
- Update to version cinder-13.0.10.dev24:
* Correct group:reset\_group\_snapshot\_status policy
Changes in openstack-heat-gbp:
- Update to version group-based-policy-automation-14.0.1.dev4:
* Add support for yoga
- Update to version group-based-policy-automation-14.0.1.dev3:
* Python2/3 compatibility fixes
- Update to version group-based-policy-automation-14.0.1.dev2:
* Add support for xena
- Update to version group-based-policy-automation-14.0.1.dev1:
* Remove py27 from gate jobs
14.0.0
Changes in openstack-horizon-plugin-gbp-ui:
- Update to version group-based-policy-ui-14.0.1.dev3:
* Add support for yoga
- Update to version group-based-policy-ui-14.0.1.dev2:
* Python2/3 compatibility changes
- Update to version group-based-policy-ui-14.0.1.dev1:
* Add support for xena
14.0.0
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev18:
* Cleanup stable/rocky legacy jobs
Changes in openstack-ironic:
- Update to version ironic-11.1.5.dev18:
* Cleanup stable/rocky legacy jobs
Changes in openstack-keystone:
- Update to version keystone-14.2.1.dev9:
* Delete system role assignments from system\_assignment table
Changes in openstack-keystone:
- Add patch (0001-Hide-AccountLocked-exception-from-end-users.patch) to fix
the problem where AccountLocked exception discloses sensitive information.
bsc#1189390,CVE-2021-38155
- Update to version keystone-14.2.1.dev9:
* Delete system role assignments from system\_assignment table
Changes in openstack-neutron-gbp:
- Update to version group-based-policy-14.0.1.dev33:
* Populate network mtu for erspan
- Update to version group-based-policy-14.0.1.dev32:
* ERSPAN config error when Openstack port is created in a different project than network it belongs to
2014.2.rc1
- Update to version group-based-policy-14.0.1.dev31:
* Python2/3 compatibility fixes
2014.2.0rc1
- Update to version group-based-policy-14.0.1.dev29:
* Fix oslo\_i18n usage
- Update to version group-based-policy-14.0.1.dev27:
* Update mechanism\_driver cache
2014.2.rc1
- Update to version group-based-policy-14.0.1.dev26:
* Add support for xena
- Update to version group-based-policy-14.0.1.dev24:
* update\_floatingip\_status\_while\_deleting\_the\_vm
- Update to version group-based-policy-14.0.1.dev22:
* Updating host id by appending pid in existing host id
2014.2.0rc1
- Update to version group-based-policy-14.0.1.dev20:
* Revert 'Add workaround to get\_subnets'
Changes in python-lxml:
- Fix bsc#1179534 (CVE-2020-27783)
mXSS due to the use of improper parser
Patch files: 0001-CVE-2020-27783.patch 0002-CVE-2020-27783.patch
- Fix bsc#1118088 (CVE-2018-19787)
lxml/html/clean.py in the lxml.html.clean module does not remove
javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks
Patch file: 0001-CVE-2018-19787.patch
- Fix bsc#1184177 (CVE-2021-28957)
missing input sanitization for formaction HTML5 attributes may lead to XSS
Patch file: 0001-CVE-2021-28957.patch
- Fix bsc#1193752 (CVE-2021-43818)
Cleaner: Remove SVG image data URLs since they can embed script content.
Reported as GHSL-2021-1037 and GHSL-2021-1038
Patch files 0001-CVE-2021-43818.patch 0002-CVE-2021-43818.patch
Changes in openstack-neutron-doc:
- Update to version neutron-13.0.8.dev206:
* Wait longer before deleting DPDK vhu trunk bridges
- Update to version neutron-13.0.8.dev205:
* Do no use '--strict' for OF deletion in TRANSIENT\_TABLE
- Update to version neutron-13.0.8.dev203:
* Populate self.floating\_ips\_dict using 'ip rule' information
- Update to version neutron-13.0.8.dev201:
* [Functional] Wait for the initial state of ha router before test
* Don't setup bridge controller if it is already set
- Update to version neutron-13.0.8.dev198:
* Remove dhcp\_extra\_opt name after first newline character
- Update to version neutron-13.0.8.dev196:
* [L3] Use processing queue for network update events
* Add extra logs to the network update callback in L3 agent
- Update to version neutron-13.0.8.dev192:
* Remove dhcp\_extra\_opt value after first newline character
- Update to version neutron-13.0.8.dev190:
* Don't use singleton in routes.middleware.RoutesMiddleware
- Update to version neutron-13.0.8.dev189:
* Fix notify listener syntax for SEGMENT\_HOST\_MAPPING
- Update to version neutron-13.0.8.dev188:
* Clean port forwarding cache when router is DOWN
- Update to version neutron-13.0.8.dev186:
* Remove FIP agent's gw port when L3 agent is deleted
- Update to version neutron-13.0.8.dev184:
* Force to close http connection after notify about HA router status
- Update to version neutron-13.0.8.dev183:
* Don't configure dnsmasq entries for 'network' ports
- Update to version neutron-13.0.8.dev181:
* Exclude fallback tunnel devices from netns cleanup
- Update to version neutron-13.0.8.dev180:
* [DVR] Send allowed address pairs info to the L3 agents
* designate: allow PTR zone creation to fail
* Don't try to create default SG when security groups are disabled
- Update to version neutron-13.0.8.dev174:
* Fix update of trunk subports during live migration
- Update to version neutron-13.0.8.dev172:
* [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses
- Update to version neutron-13.0.8.dev170:
* Call install\_ingress\_direct\_goto\_flows() when ovs restarts
- Update to version neutron-13.0.8.dev168:
* Fix multicast traffic with IGMP snooping enabled
- Update to version neutron-13.0.8.dev166:
* Fix OVS conjunctive IP flows cleanup
Changes in openstack-neutron:
- Update to version neutron-13.0.8.dev206:
* Wait longer before deleting DPDK vhu trunk bridges
- Update to version neutron-13.0.8.dev205:
* Do no use '--strict' for OF deletion in TRANSIENT\_TABLE
- Update to version neutron-13.0.8.dev203:
* Populate self.floating\_ips\_dict using 'ip rule' information
- Update to version neutron-13.0.8.dev201:
* [Functional] Wait for the initial state of ha router before test
* Don't setup bridge controller if it is already set
- Update to version neutron-13.0.8.dev198:
* Remove dhcp\_extra\_opt name after first newline character
- Update to version neutron-13.0.8.dev196:
* [L3] Use processing queue for network update events
* Add extra logs to the network update callback in L3 agent
- Remove cve-2021-40085-stable-rocky.patch (merged upstream)
- Update to version neutron-13.0.8.dev192:
* Remove dhcp\_extra\_opt value after first newline character
- Update to version neutron-13.0.8.dev190:
* Don't use singleton in routes.middleware.RoutesMiddleware
- Update to version neutron-13.0.8.dev189:
* Fix notify listener syntax for SEGMENT\_HOST\_MAPPING
- Add cve-2021-40085-stable-rocky.patch (bsc#1189794, CVE-2021-40085)
* Remove dhcp_extra_opt value after first newline character
- Update to version neutron-13.0.8.dev188:
* Clean port forwarding cache when router is DOWN
- Update to version neutron-13.0.8.dev186:
* Remove FIP agent's gw port when L3 agent is deleted
- Update to version neutron-13.0.8.dev184:
* Force to close http connection after notify about HA router status
- Update to version neutron-13.0.8.dev183:
* Don't configure dnsmasq entries for 'network' ports
- Update to version neutron-13.0.8.dev181:
* Exclude fallback tunnel devices from netns cleanup
- Update to version neutron-13.0.8.dev180:
* [DVR] Send allowed address pairs info to the L3 agents
* designate: allow PTR zone creation to fail
* Don't try to create default SG when security groups are disabled
- Update to version neutron-13.0.8.dev174:
* Fix update of trunk subports during live migration
- Update to version neutron-13.0.8.dev172:
* [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses
- Update to version neutron-13.0.8.dev170:
* Call install\_ingress\_direct\_goto\_flows() when ovs restarts
- Update to version neutron-13.0.8.dev168:
* Fix multicast traffic with IGMP snooping enabled
- Update to version neutron-13.0.8.dev166:
* Fix OVS conjunctive IP flows cleanup
Changes in python-Pillow:
- Add 030-CVE-2022-22817.patch
* From upstream, backported
* Fixes CVE-2022-22817, bsc#1194521
* test from upstream updated for python2
- Add 028-CVE-2022-22815.patch
* From upstream, backported
* Fixes CVE-2022-22815, bsc#1194552
- Add 029-CVE-2022-22816.patch
* From upstream, backported
* Fixes CVE-2022-22816, bsc#1194551
Changes in python-XStatic-jquery-ui:
- Update to version 1.13.0.1 (bsc#1192070, CVE-2021-41182, bsc#1192073,
CVE-2021-41184, bsc#1192075, CVE-2021-41183)
* Fix XSS in the altField option of the Datepicker widget
(CVE-2021-41182)
* Fix XSS in *Text options of the Datepicker widget
(CVE-2021-41183)
* Fix XSS in the of option of the .position() util
(CVE-2021-41184)
* Drop support for Query 1.7
* Accordion: allow function parameter for selecting header
elements
* Datepicker: add optional onUpdateDatepicker callback
Changes in release-notes-suse-openstack-cloud:
- Update to version 9.20220413:
* Update release notes to indicate support for SES7
- Update to version 9.20220112:
* Add reference to keystone bcrypt issue to known limitations (bsc#1186380)
Changes in rubygem-sinatra:
- Add CVE-2022-29970.patch (bsc#1199138, CVE-2022-29970)
Patchnames
SUSE-2022-1729,SUSE-OpenStack-Cloud-9-2022-1729,SUSE-OpenStack-Cloud-Crowbar-9-2022-1729
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "important", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud", title: "Title of the patch", }, { category: "description", text: "This update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud fixes the following issues:\n\nSecurity fixes included on the update:\n\nardana-barbican:\n\n- Update policies to protect container secret access (SOC-11621)\n- Update policies to protect secret metadata access (SOC-11620)\n\nopenstack-neutron:\n\n- CVE-2021-40085: Fixed arbitrary dnsmasq reconfiguration via extra_dhcp_opts (bsc#1189794).\n\nrubygem-sinatra:\n\n- CVE-2022-29970: Fixed path traversal possible outside of public_dir when serving static files (bsc#1199138).\n\npython-XStatic-jquery-ui:\n\n- CVE-2021-41182: Fixed XSS in the `altField` option of the Datepicker widget (bsc#1192070)\n- CVE-2021-41183: Fixed XSS in the `of` option of the `.position()` util (bsc#1192073)\n- CVE-2021-41184: Fixed XSS in `*Text` options of the Datepicker widget (bsc#1192075)\n\npython-lxml:\n\n- CVE-2018-19787: Fixed that the lxml.html.clean module does remove javascript in lxml/html/clean.py (bsc#1118088).\n- CVE-2020-27783: Fixed mXSS due to the use of improper parser (bsc#1179534).\n- CVE-2021-28957: Fixed missing input sanitization for formaction HTML5 attributes that may have led to XSS (bsc#1184177).\n- CVE-2021-43818: Fixed HTML Cleaner that allowed crafted and SVG embedded scripts to pass through (bsc#1193752).\n\nopenstack-barbican:\n\n- CVE-2022-23451: Disallows authenticated users to add/modify/delete arbitrary metadata on any secret (bsc#1194952).\n- CVE-2022-23452: Disallows anyone with an admin role to add their secrets to a different project's containers (bsc#1194954).\n\ngrafana:\n\n- CVE-2021-44716: Fixed net/http: limit growth of header canonicalization cache (bsc#1193597).\n\nopenstack-keystone:\n\n- CVE-2021-38155: Fixed information disclosure during account locking (bsc#1189390).\n\nNon-security fixes included on the update:\n\nChanges in ardana-barbican:\n- Update to version 9.0+git.1644879908.8a641c1:\n * Update policies to protect container secret access (SOC-11621)\n\n- Update to version 9.0+git.1643052417.9a3348e:\n * update policies to protect secret metadata access (SOC-11620)\n\nChanges in grafana:\n- Add CVE-2021-43813.patch (bsc#1193688, CVE-2021-43813)\n * directory traversal vulnerability for .md files \n\n- Bump Go to 1.16 (bsc#1193597, CVE-2021-44716)\n * Fix Go net/http: limit growth of header canonicalization cache\n\nChanges in openstack-barbican:\n- Add patches (0001-Fix-RBAC-and-ACL-access-for-managing-secret-containe.patch\n and 0001-Fix-policy-for-adding-a-secret-to-a-container.patch) to fix\n the legacy policy rules for adding a secret to a container and removing\n a secret from a container. bsc#1194954,CVE-2022-23452\n\n- Add patch (0001-Fix-secret-metadata-access-rules.patch) to fix the\n legacy policy rules for accessing secret metadata by checking that\n the user making the request is authenticated for the project that\n owns the secret. bsc#1194952,CVE-2022-23451\n\nChanges in openstack-cinder:\n- Update to version cinder-13.0.10.dev24:\n * Correct group:reset\\_group\\_snapshot\\_status policy\n\nChanges in openstack-cinder:\n- Update to version cinder-13.0.10.dev24:\n * Correct group:reset\\_group\\_snapshot\\_status policy\n\nChanges in openstack-heat-gbp:\n- Update to version group-based-policy-automation-14.0.1.dev4:\n * Add support for yoga\n\n- Update to version group-based-policy-automation-14.0.1.dev3:\n * Python2/3 compatibility fixes\n\n- Update to version group-based-policy-automation-14.0.1.dev2:\n * Add support for xena\n\n- Update to version group-based-policy-automation-14.0.1.dev1:\n * Remove py27 from gate jobs\n 14.0.0\n\nChanges in openstack-horizon-plugin-gbp-ui:\n- Update to version group-based-policy-ui-14.0.1.dev3:\n * Add support for yoga\n\n- Update to version group-based-policy-ui-14.0.1.dev2:\n * Python2/3 compatibility changes\n\n- Update to version group-based-policy-ui-14.0.1.dev1:\n * Add support for xena\n 14.0.0\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev18:\n * Cleanup stable/rocky legacy jobs\n\nChanges in openstack-ironic:\n- Update to version ironic-11.1.5.dev18:\n * Cleanup stable/rocky legacy jobs\n\nChanges in openstack-keystone:\n- Update to version keystone-14.2.1.dev9:\n * Delete system role assignments from system\\_assignment table\n\nChanges in openstack-keystone:\n- Add patch (0001-Hide-AccountLocked-exception-from-end-users.patch) to fix\n the problem where AccountLocked exception discloses sensitive information.\n bsc#1189390,CVE-2021-38155\n\n- Update to version keystone-14.2.1.dev9:\n * Delete system role assignments from system\\_assignment table\n\nChanges in openstack-neutron-gbp:\n- Update to version group-based-policy-14.0.1.dev33:\n * Populate network mtu for erspan\n\n- Update to version group-based-policy-14.0.1.dev32:\n * ERSPAN config error when Openstack port is created in a different project than network it belongs to\n 2014.2.rc1\n\n- Update to version group-based-policy-14.0.1.dev31:\n * Python2/3 compatibility fixes\n 2014.2.0rc1\n\n- Update to version group-based-policy-14.0.1.dev29:\n * Fix oslo\\_i18n usage\n\n- Update to version group-based-policy-14.0.1.dev27:\n * Update mechanism\\_driver cache\n 2014.2.rc1\n\n- Update to version group-based-policy-14.0.1.dev26:\n * Add support for xena\n\n- Update to version group-based-policy-14.0.1.dev24:\n * update\\_floatingip\\_status\\_while\\_deleting\\_the\\_vm\n\n- Update to version group-based-policy-14.0.1.dev22:\n * Updating host id by appending pid in existing host id\n 2014.2.0rc1\n\n- Update to version group-based-policy-14.0.1.dev20:\n * Revert 'Add workaround to get\\_subnets'\n\nChanges in python-lxml:\n- Fix bsc#1179534 (CVE-2020-27783)\n mXSS due to the use of improper parser \n Patch files: 0001-CVE-2020-27783.patch 0002-CVE-2020-27783.patch\n- Fix bsc#1118088 (CVE-2018-19787)\n lxml/html/clean.py in the lxml.html.clean module does not remove\n javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks\n Patch file: 0001-CVE-2018-19787.patch\n- Fix bsc#1184177 (CVE-2021-28957)\n missing input sanitization for formaction HTML5 attributes may lead to XSS\n Patch file: 0001-CVE-2021-28957.patch\n- Fix bsc#1193752 (CVE-2021-43818)\n Cleaner: Remove SVG image data URLs since they can embed script content.\n Reported as GHSL-2021-1037 and GHSL-2021-1038 \n Patch files 0001-CVE-2021-43818.patch 0002-CVE-2021-43818.patch\n\nChanges in openstack-neutron-doc:\n- Update to version neutron-13.0.8.dev206:\n * Wait longer before deleting DPDK vhu trunk bridges\n\n- Update to version neutron-13.0.8.dev205:\n * Do no use '--strict' for OF deletion in TRANSIENT\\_TABLE\n\n- Update to version neutron-13.0.8.dev203:\n * Populate self.floating\\_ips\\_dict using 'ip rule' information\n\n- Update to version neutron-13.0.8.dev201:\n * [Functional] Wait for the initial state of ha router before test\n * Don't setup bridge controller if it is already set\n\n- Update to version neutron-13.0.8.dev198:\n * Remove dhcp\\_extra\\_opt name after first newline character\n\n- Update to version neutron-13.0.8.dev196:\n * [L3] Use processing queue for network update events\n * Add extra logs to the network update callback in L3 agent\n\n- Update to version neutron-13.0.8.dev192:\n * Remove dhcp\\_extra\\_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev190:\n * Don't use singleton in routes.middleware.RoutesMiddleware\n\n- Update to version neutron-13.0.8.dev189:\n * Fix notify listener syntax for SEGMENT\\_HOST\\_MAPPING\n\n- Update to version neutron-13.0.8.dev188:\n * Clean port forwarding cache when router is DOWN\n\n- Update to version neutron-13.0.8.dev186:\n * Remove FIP agent's gw port when L3 agent is deleted\n\n- Update to version neutron-13.0.8.dev184:\n * Force to close http connection after notify about HA router status\n\n- Update to version neutron-13.0.8.dev183:\n * Don't configure dnsmasq entries for 'network' ports\n\n- Update to version neutron-13.0.8.dev181:\n * Exclude fallback tunnel devices from netns cleanup\n\n- Update to version neutron-13.0.8.dev180:\n * [DVR] Send allowed address pairs info to the L3 agents\n * designate: allow PTR zone creation to fail\n * Don't try to create default SG when security groups are disabled\n\n- Update to version neutron-13.0.8.dev174:\n * Fix update of trunk subports during live migration\n\n- Update to version neutron-13.0.8.dev172:\n * [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses\n\n- Update to version neutron-13.0.8.dev170:\n * Call install\\_ingress\\_direct\\_goto\\_flows() when ovs restarts\n\n- Update to version neutron-13.0.8.dev168:\n * Fix multicast traffic with IGMP snooping enabled\n\n- Update to version neutron-13.0.8.dev166:\n * Fix OVS conjunctive IP flows cleanup\n\nChanges in openstack-neutron:\n- Update to version neutron-13.0.8.dev206:\n * Wait longer before deleting DPDK vhu trunk bridges\n\n- Update to version neutron-13.0.8.dev205:\n * Do no use '--strict' for OF deletion in TRANSIENT\\_TABLE\n\n- Update to version neutron-13.0.8.dev203:\n * Populate self.floating\\_ips\\_dict using 'ip rule' information\n\n- Update to version neutron-13.0.8.dev201:\n * [Functional] Wait for the initial state of ha router before test\n * Don't setup bridge controller if it is already set\n\n- Update to version neutron-13.0.8.dev198:\n * Remove dhcp\\_extra\\_opt name after first newline character\n\n- Update to version neutron-13.0.8.dev196:\n * [L3] Use processing queue for network update events\n * Add extra logs to the network update callback in L3 agent\n\n- Remove cve-2021-40085-stable-rocky.patch (merged upstream)\n\n- Update to version neutron-13.0.8.dev192:\n * Remove dhcp\\_extra\\_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev190:\n * Don't use singleton in routes.middleware.RoutesMiddleware\n\n- Update to version neutron-13.0.8.dev189:\n * Fix notify listener syntax for SEGMENT\\_HOST\\_MAPPING\n\n- Add cve-2021-40085-stable-rocky.patch (bsc#1189794, CVE-2021-40085) \n * Remove dhcp_extra_opt value after first newline character\n\n- Update to version neutron-13.0.8.dev188:\n * Clean port forwarding cache when router is DOWN\n\n- Update to version neutron-13.0.8.dev186:\n * Remove FIP agent's gw port when L3 agent is deleted\n\n- Update to version neutron-13.0.8.dev184:\n * Force to close http connection after notify about HA router status\n\n- Update to version neutron-13.0.8.dev183:\n * Don't configure dnsmasq entries for 'network' ports\n\n- Update to version neutron-13.0.8.dev181:\n * Exclude fallback tunnel devices from netns cleanup\n\n- Update to version neutron-13.0.8.dev180:\n * [DVR] Send allowed address pairs info to the L3 agents\n * designate: allow PTR zone creation to fail\n * Don't try to create default SG when security groups are disabled\n\n- Update to version neutron-13.0.8.dev174:\n * Fix update of trunk subports during live migration\n\n- Update to version neutron-13.0.8.dev172:\n * [ovs fw] Restrict IPv6 NA and DHCP(v6) IP and MAC source addresses\n\n- Update to version neutron-13.0.8.dev170:\n * Call install\\_ingress\\_direct\\_goto\\_flows() when ovs restarts\n\n- Update to version neutron-13.0.8.dev168:\n * Fix multicast traffic with IGMP snooping enabled\n\n- Update to version neutron-13.0.8.dev166:\n * Fix OVS conjunctive IP flows cleanup\n\nChanges in python-Pillow:\n- Add 030-CVE-2022-22817.patch\n * From upstream, backported\n * Fixes CVE-2022-22817, bsc#1194521 \n * test from upstream updated for python2\n\n- Add 028-CVE-2022-22815.patch\n * From upstream, backported\n * Fixes CVE-2022-22815, bsc#1194552\n- Add 029-CVE-2022-22816.patch\n * From upstream, backported\n * Fixes CVE-2022-22816, bsc#1194551\n\nChanges in python-XStatic-jquery-ui:\n- Update to version 1.13.0.1 (bsc#1192070, CVE-2021-41182, bsc#1192073,\n CVE-2021-41184, bsc#1192075, CVE-2021-41183)\n * Fix XSS in the altField option of the Datepicker widget \n (CVE-2021-41182)\n * Fix XSS in *Text options of the Datepicker widget\n (CVE-2021-41183)\n * Fix XSS in the of option of the .position() util\n (CVE-2021-41184)\n * Drop support for Query 1.7\n * Accordion: allow function parameter for selecting header\n elements\n * Datepicker: add optional onUpdateDatepicker callback\n\nChanges in release-notes-suse-openstack-cloud:\n- Update to version 9.20220413:\n * Update release notes to indicate support for SES7\n- Update to version 9.20220112:\n * Add reference to keystone bcrypt issue to known limitations (bsc#1186380)\n\nChanges in rubygem-sinatra:\n- Add CVE-2022-29970.patch (bsc#1199138, CVE-2022-29970)\n\n ", title: "Description of the patch", }, { category: "details", text: "SUSE-2022-1729,SUSE-OpenStack-Cloud-9-2022-1729,SUSE-OpenStack-Cloud-Crowbar-9-2022-1729", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2022_1729-1.json", }, { category: "self", summary: "URL for SUSE-SU-2022:1729-1", url: "https://www.suse.com/support/update/announcement/2022/suse-su-20221729-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2022:1729-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2022-May/011075.html", }, { category: "self", summary: "SUSE Bug 1118088", url: "https://bugzilla.suse.com/1118088", }, { category: "self", summary: "SUSE Bug 1179534", url: "https://bugzilla.suse.com/1179534", }, { category: "self", summary: "SUSE Bug 1184177", url: "https://bugzilla.suse.com/1184177", }, { category: "self", summary: "SUSE Bug 1186380", url: "https://bugzilla.suse.com/1186380", }, { category: "self", summary: "SUSE Bug 1189390", url: "https://bugzilla.suse.com/1189390", }, { category: "self", summary: "SUSE Bug 1189794", url: "https://bugzilla.suse.com/1189794", }, { category: "self", summary: "SUSE Bug 1192070", url: "https://bugzilla.suse.com/1192070", }, { category: "self", summary: "SUSE Bug 1192073", url: "https://bugzilla.suse.com/1192073", }, { category: "self", summary: "SUSE Bug 1192075", url: "https://bugzilla.suse.com/1192075", }, { category: "self", summary: "SUSE Bug 1193597", url: "https://bugzilla.suse.com/1193597", }, { category: "self", summary: "SUSE Bug 1193688", url: "https://bugzilla.suse.com/1193688", }, { category: "self", summary: "SUSE Bug 1193752", url: "https://bugzilla.suse.com/1193752", }, { category: "self", summary: "SUSE Bug 1194521", url: "https://bugzilla.suse.com/1194521", }, { category: "self", summary: "SUSE Bug 1194551", url: "https://bugzilla.suse.com/1194551", }, { category: "self", summary: "SUSE Bug 1194552", url: "https://bugzilla.suse.com/1194552", }, { category: "self", summary: "SUSE Bug 1194952", url: "https://bugzilla.suse.com/1194952", }, { category: "self", summary: "SUSE Bug 1194954", url: "https://bugzilla.suse.com/1194954", }, { category: "self", summary: "SUSE Bug 1199138", url: "https://bugzilla.suse.com/1199138", }, { category: "self", summary: "SUSE CVE CVE-2018-19787 page", url: "https://www.suse.com/security/cve/CVE-2018-19787/", }, { category: "self", summary: "SUSE CVE CVE-2020-27783 page", url: "https://www.suse.com/security/cve/CVE-2020-27783/", }, { category: "self", summary: "SUSE CVE CVE-2021-28957 page", url: "https://www.suse.com/security/cve/CVE-2021-28957/", }, { category: "self", summary: "SUSE CVE CVE-2021-38155 page", url: "https://www.suse.com/security/cve/CVE-2021-38155/", }, { category: "self", summary: "SUSE CVE CVE-2021-40085 page", url: "https://www.suse.com/security/cve/CVE-2021-40085/", }, { category: "self", summary: "SUSE CVE CVE-2021-41182 page", url: "https://www.suse.com/security/cve/CVE-2021-41182/", }, { category: "self", summary: "SUSE CVE CVE-2021-41183 page", url: "https://www.suse.com/security/cve/CVE-2021-41183/", }, { category: "self", summary: "SUSE CVE CVE-2021-41184 page", url: "https://www.suse.com/security/cve/CVE-2021-41184/", }, { category: "self", summary: "SUSE CVE CVE-2021-43813 page", url: "https://www.suse.com/security/cve/CVE-2021-43813/", }, { category: "self", summary: "SUSE CVE CVE-2021-43818 page", url: "https://www.suse.com/security/cve/CVE-2021-43818/", }, { category: "self", summary: "SUSE CVE CVE-2021-44716 page", url: "https://www.suse.com/security/cve/CVE-2021-44716/", }, { category: "self", summary: "SUSE CVE CVE-2022-22815 page", url: "https://www.suse.com/security/cve/CVE-2022-22815/", }, { category: "self", summary: "SUSE CVE CVE-2022-22816 page", url: "https://www.suse.com/security/cve/CVE-2022-22816/", }, { category: "self", summary: "SUSE CVE CVE-2022-22817 page", url: "https://www.suse.com/security/cve/CVE-2022-22817/", }, { category: "self", summary: "SUSE CVE CVE-2022-23451 page", url: "https://www.suse.com/security/cve/CVE-2022-23451/", }, { category: "self", summary: "SUSE CVE CVE-2022-23452 page", url: "https://www.suse.com/security/cve/CVE-2022-23452/", }, { category: "self", summary: "SUSE CVE CVE-2022-29970 page", url: "https://www.suse.com/security/cve/CVE-2022-29970/", }, ], title: "Security update for ardana-barbican, grafana, openstack-barbican, openstack-cinder, openstack-heat-gbp, openstack-horizon-plugin-gbp-ui, openstack-ironic, openstack-keystone, openstack-neutron-gbp, python-lxml, release-notes-suse-openstack-cloud", tracking: { current_release_date: "2022-05-18T14:55:52Z", generator: { date: "2022-05-18T14:55:52Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2022:1729-1", initial_release_date: "2022-05-18T14:55:52Z", revision_history: [ { date: "2022-05-18T14:55:52Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "grafana-6.7.4-3.26.1.aarch64", product: { name: "grafana-6.7.4-3.26.1.aarch64", product_id: "grafana-6.7.4-3.26.1.aarch64", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.17.1.aarch64", product: { name: "python-Pillow-5.2.0-3.17.1.aarch64", product_id: "python-Pillow-5.2.0-3.17.1.aarch64", }, }, { category: "product_version", name: "python-lxml-4.2.4-3.3.1.aarch64", product: { name: "python-lxml-4.2.4-3.3.1.aarch64", product_id: "python-lxml-4.2.4-3.3.1.aarch64", }, }, { category: "product_version", name: "python-lxml-devel-4.2.4-3.3.1.aarch64", product: { name: "python-lxml-devel-4.2.4-3.3.1.aarch64", product_id: "python-lxml-devel-4.2.4-3.3.1.aarch64", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.17.1.aarch64", product: { name: "python3-Pillow-5.2.0-3.17.1.aarch64", product_id: "python3-Pillow-5.2.0-3.17.1.aarch64", }, }, { category: "product_version", name: "python3-lxml-4.2.4-3.3.1.aarch64", product: { name: "python3-lxml-4.2.4-3.3.1.aarch64", product_id: "python3-lxml-4.2.4-3.3.1.aarch64", }, }, { category: "product_version", name: "python3-lxml-devel-4.2.4-3.3.1.aarch64", product: { name: "python3-lxml-devel-4.2.4-3.3.1.aarch64", product_id: "python3-lxml-devel-4.2.4-3.3.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.aarch64", product: { name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.aarch64", product_id: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.aarch64", product: { name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.aarch64", product_id: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.aarch64", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.aarch64", product: { name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.aarch64", product_id: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", product: { name: "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", product_id: "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", }, }, { category: "product_version", name: "openstack-barbican-7.0.1~dev24-3.14.1.noarch", product: { name: "openstack-barbican-7.0.1~dev24-3.14.1.noarch", product_id: "openstack-barbican-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", product: { name: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", product_id: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", product: { name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", product_id: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", product: { name: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", product_id: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "openstack-barbican-test-7.0.1~dev24-3.14.1.noarch", product: { name: "openstack-barbican-test-7.0.1~dev24-3.14.1.noarch", product_id: "openstack-barbican-test-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", product: { name: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", product_id: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "openstack-cinder-13.0.10~dev24-3.34.2.noarch", product: { name: "openstack-cinder-13.0.10~dev24-3.34.2.noarch", product_id: "openstack-cinder-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", product: { name: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", product_id: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", product: { name: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", product_id: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", product: { name: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", product_id: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "openstack-cinder-test-13.0.10~dev24-3.34.2.noarch", product: { name: "openstack-cinder-test-13.0.10~dev24-3.34.2.noarch", product_id: "openstack-cinder-test-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", product: { name: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", product_id: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", product: { name: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", product_id: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", }, }, { category: "product_version", name: "openstack-heat-gbp-test-14.0.1~dev4-3.9.1.noarch", product: { name: "openstack-heat-gbp-test-14.0.1~dev4-3.9.1.noarch", product_id: "openstack-heat-gbp-test-14.0.1~dev4-3.9.1.noarch", }, }, { category: "product_version", name: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", product: { name: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", product_id: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", }, }, { category: "product_version", name: "openstack-horizon-plugin-gbp-ui-test-14.0.1~dev3-3.9.1.noarch", product: { name: "openstack-horizon-plugin-gbp-ui-test-14.0.1~dev3-3.9.1.noarch", product_id: "openstack-horizon-plugin-gbp-ui-test-14.0.1~dev3-3.9.1.noarch", }, }, { category: "product_version", name: "openstack-ironic-11.1.5~dev18-3.28.2.noarch", product: { name: "openstack-ironic-11.1.5~dev18-3.28.2.noarch", product_id: "openstack-ironic-11.1.5~dev18-3.28.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", product: { name: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", product_id: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", product: { name: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", product_id: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", }, }, { category: "product_version", name: "openstack-ironic-test-11.1.5~dev18-3.28.2.noarch", product: { name: "openstack-ironic-test-11.1.5~dev18-3.28.2.noarch", product_id: "openstack-ironic-test-11.1.5~dev18-3.28.2.noarch", }, }, { category: "product_version", name: "openstack-keystone-14.2.1~dev9-3.28.2.noarch", product: { name: "openstack-keystone-14.2.1~dev9-3.28.2.noarch", product_id: "openstack-keystone-14.2.1~dev9-3.28.2.noarch", }, }, { category: "product_version", name: "openstack-keystone-test-14.2.1~dev9-3.28.2.noarch", product: { name: "openstack-keystone-test-14.2.1~dev9-3.28.2.noarch", product_id: "openstack-keystone-test-14.2.1~dev9-3.28.2.noarch", }, }, { category: "product_version", name: "openstack-neutron-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", product: { name: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", product_id: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-gbp-test-14.0.1~dev33-3.31.1.noarch", product: { name: "openstack-neutron-gbp-test-14.0.1~dev33-3.31.1.noarch", product_id: "openstack-neutron-gbp-test-14.0.1~dev33-3.31.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "openstack-neutron-test-13.0.8~dev206-3.40.1.noarch", product: { name: "openstack-neutron-test-13.0.8~dev206-3.40.1.noarch", product_id: "openstack-neutron-test-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", product: { name: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", product_id: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", }, }, { category: "product_version", name: "python-barbican-7.0.1~dev24-3.14.1.noarch", product: { name: "python-barbican-7.0.1~dev24-3.14.1.noarch", product_id: "python-barbican-7.0.1~dev24-3.14.1.noarch", }, }, { category: "product_version", name: "python-cinder-13.0.10~dev24-3.34.2.noarch", product: { name: "python-cinder-13.0.10~dev24-3.34.2.noarch", product_id: "python-cinder-13.0.10~dev24-3.34.2.noarch", }, }, { category: "product_version", name: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch", product: { name: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch", product_id: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch", }, }, { category: "product_version", name: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", product: { name: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", product_id: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", }, }, { category: "product_version", name: "python-ironic-11.1.5~dev18-3.28.2.noarch", product: { name: "python-ironic-11.1.5~dev18-3.28.2.noarch", product_id: "python-ironic-11.1.5~dev18-3.28.2.noarch", }, }, { category: "product_version", name: "python-keystone-14.2.1~dev9-3.28.2.noarch", product: { name: "python-keystone-14.2.1~dev9-3.28.2.noarch", product_id: "python-keystone-14.2.1~dev9-3.28.2.noarch", }, }, { category: "product_version", name: "python-lxml-doc-4.2.4-3.3.1.noarch", product: { name: "python-lxml-doc-4.2.4-3.3.1.noarch", product_id: "python-lxml-doc-4.2.4-3.3.1.noarch", }, }, { category: "product_version", name: "python-neutron-13.0.8~dev206-3.40.1.noarch", product: { name: "python-neutron-13.0.8~dev206-3.40.1.noarch", product_id: "python-neutron-13.0.8~dev206-3.40.1.noarch", }, }, { category: "product_version", name: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", product: { name: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", product_id: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", }, }, { category: "product_version", name: "python3-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", product: { name: "python3-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", product_id: "python3-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", }, }, { category: "product_version", name: "python3-lxml-doc-4.2.4-3.3.1.noarch", product: { name: "python3-lxml-doc-4.2.4-3.3.1.noarch", product_id: "python3-lxml-doc-4.2.4-3.3.1.noarch", }, }, { category: "product_version", name: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", product: { name: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", product_id: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", }, }, { category: "product_version", name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", product: { name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", product_id: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", }, }, { category: "product_version", name: "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", product: { name: "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", product_id: "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", }, }, { category: "product_version", name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", product: { name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", product_id: "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", }, }, { category: "product_version", name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", product: { name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", product_id: "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", }, }, { category: "product_version", name: "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", product: { name: "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", product_id: "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", }, }, { category: "product_version", name: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", product: { name: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", product_id: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", }, }, { category: "product_version", name: "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", product: { name: "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", product_id: "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", }, }, { category: "product_version", name: "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", product: { name: "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", product_id: "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", }, }, { category: "product_version", name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", product: { name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", product_id: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", }, }, { category: "product_version", name: "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", product: { name: "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", product_id: "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", product: { name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", product_id: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", }, }, { category: "product_version", name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", product: { name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", product_id: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", }, }, { category: "product_version", name: "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", product: { name: "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", product_id: "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", }, }, { category: "product_version", name: "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", product: { name: "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", product_id: "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", }, }, { category: "product_version", name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", product: { name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", product_id: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", }, }, { category: "product_version", name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", product: { name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", product_id: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", }, }, { category: "product_version", name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", product: { name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", product_id: "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-3.26.1.ppc64le", product: { name: "grafana-6.7.4-3.26.1.ppc64le", product_id: "grafana-6.7.4-3.26.1.ppc64le", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.17.1.ppc64le", product: { name: "python-Pillow-5.2.0-3.17.1.ppc64le", product_id: "python-Pillow-5.2.0-3.17.1.ppc64le", }, }, { category: "product_version", name: "python-lxml-4.2.4-3.3.1.ppc64le", product: { name: "python-lxml-4.2.4-3.3.1.ppc64le", product_id: "python-lxml-4.2.4-3.3.1.ppc64le", }, }, { category: "product_version", name: "python-lxml-devel-4.2.4-3.3.1.ppc64le", product: { name: "python-lxml-devel-4.2.4-3.3.1.ppc64le", product_id: "python-lxml-devel-4.2.4-3.3.1.ppc64le", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.17.1.ppc64le", product: { name: "python3-Pillow-5.2.0-3.17.1.ppc64le", product_id: "python3-Pillow-5.2.0-3.17.1.ppc64le", }, }, { category: "product_version", name: "python3-lxml-4.2.4-3.3.1.ppc64le", product: { name: "python3-lxml-4.2.4-3.3.1.ppc64le", product_id: "python3-lxml-4.2.4-3.3.1.ppc64le", }, }, { category: "product_version", name: "python3-lxml-devel-4.2.4-3.3.1.ppc64le", product: { name: "python3-lxml-devel-4.2.4-3.3.1.ppc64le", product_id: "python3-lxml-devel-4.2.4-3.3.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.ppc64le", product: { name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.ppc64le", product_id: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.ppc64le", product: { name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.ppc64le", product_id: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.ppc64le", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.ppc64le", product: { name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.ppc64le", product_id: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-3.26.1.s390x", product: { name: "grafana-6.7.4-3.26.1.s390x", product_id: "grafana-6.7.4-3.26.1.s390x", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.17.1.s390x", product: { name: "python-Pillow-5.2.0-3.17.1.s390x", product_id: "python-Pillow-5.2.0-3.17.1.s390x", }, }, { category: "product_version", name: "python-lxml-4.2.4-3.3.1.s390x", product: { name: "python-lxml-4.2.4-3.3.1.s390x", product_id: "python-lxml-4.2.4-3.3.1.s390x", }, }, { category: "product_version", name: "python-lxml-devel-4.2.4-3.3.1.s390x", product: { name: "python-lxml-devel-4.2.4-3.3.1.s390x", product_id: "python-lxml-devel-4.2.4-3.3.1.s390x", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.17.1.s390x", product: { name: "python3-Pillow-5.2.0-3.17.1.s390x", product_id: "python3-Pillow-5.2.0-3.17.1.s390x", }, }, { category: "product_version", name: "python3-lxml-4.2.4-3.3.1.s390x", product: { name: "python3-lxml-4.2.4-3.3.1.s390x", product_id: "python3-lxml-4.2.4-3.3.1.s390x", }, }, { category: "product_version", name: "python3-lxml-devel-4.2.4-3.3.1.s390x", product: { name: "python3-lxml-devel-4.2.4-3.3.1.s390x", product_id: "python3-lxml-devel-4.2.4-3.3.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.s390x", product: { name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.s390x", product_id: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.s390x", product: { name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.s390x", product_id: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.s390x", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.s390x", product: { name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.s390x", product_id: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "grafana-6.7.4-3.26.1.x86_64", product: { name: "grafana-6.7.4-3.26.1.x86_64", product_id: "grafana-6.7.4-3.26.1.x86_64", }, }, { category: "product_version", name: "python-Pillow-5.2.0-3.17.1.x86_64", product: { name: "python-Pillow-5.2.0-3.17.1.x86_64", product_id: "python-Pillow-5.2.0-3.17.1.x86_64", }, }, { category: "product_version", name: "python-lxml-4.2.4-3.3.1.x86_64", product: { name: "python-lxml-4.2.4-3.3.1.x86_64", product_id: "python-lxml-4.2.4-3.3.1.x86_64", }, }, { category: "product_version", name: "python-lxml-devel-4.2.4-3.3.1.x86_64", product: { name: "python-lxml-devel-4.2.4-3.3.1.x86_64", product_id: "python-lxml-devel-4.2.4-3.3.1.x86_64", }, }, { category: "product_version", name: "python3-Pillow-5.2.0-3.17.1.x86_64", product: { name: "python3-Pillow-5.2.0-3.17.1.x86_64", product_id: "python3-Pillow-5.2.0-3.17.1.x86_64", }, }, { category: "product_version", name: "python3-lxml-4.2.4-3.3.1.x86_64", product: { name: "python3-lxml-4.2.4-3.3.1.x86_64", product_id: "python3-lxml-4.2.4-3.3.1.x86_64", }, }, { category: "product_version", name: "python3-lxml-devel-4.2.4-3.3.1.x86_64", product: { name: "python3-lxml-devel-4.2.4-3.3.1.x86_64", product_id: "python3-lxml-devel-4.2.4-3.3.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", product: { name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", product_id: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.x86_64", product: { name: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.x86_64", product_id: "ruby2.1-rubygem-sinatra-doc-1.4.6-4.3.1.x86_64", }, }, { category: "product_version", name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.x86_64", product: { name: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.x86_64", product_id: "ruby2.1-rubygem-sinatra-testsuite-1.4.6-4.3.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE OpenStack Cloud 9", product: { name: "SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud:9", }, }, }, { category: "product_name", name: "SUSE OpenStack Cloud Crowbar 9", product: { name: "SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9", product_identification_helper: { cpe: "cpe:/o:suse:suse-openstack-cloud-crowbar:9", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", }, product_reference: "ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-3.26.1.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", }, product_reference: "grafana-6.7.4-3.26.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", }, product_reference: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", }, product_reference: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", }, product_reference: "openstack-ironic-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", }, product_reference: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", }, product_reference: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", }, product_reference: "openstack-keystone-14.2.1~dev9-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", }, product_reference: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-5.2.0-3.17.1.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", }, product_reference: "python-Pillow-5.2.0-3.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", }, product_reference: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", }, product_reference: "python-barbican-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", }, product_reference: "python-cinder-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", }, product_reference: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", }, product_reference: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", }, product_reference: "python-ironic-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", }, product_reference: "python-keystone-14.2.1~dev9-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-lxml-4.2.4-3.3.1.x86_64 as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", }, product_reference: "python-lxml-4.2.4-3.3.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", }, product_reference: "python-neutron-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", }, product_reference: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", }, product_reference: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", }, product_reference: "venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", }, product_reference: "venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", }, product_reference: "venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", }, product_reference: "venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", }, product_reference: "venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", }, product_reference: "venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", }, product_reference: "venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", }, product_reference: "venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", }, product_reference: "venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", }, product_reference: "venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", }, product_reference: "venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", }, product_reference: "venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", }, product_reference: "venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", }, product_reference: "venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", }, product_reference: "venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", }, product_reference: "venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch as component of SUSE OpenStack Cloud 9", product_id: "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", }, product_reference: "venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud 9", }, { category: "default_component_of", full_product_name: { name: "grafana-6.7.4-3.26.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", }, product_reference: "grafana-6.7.4-3.26.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", }, product_reference: "openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", }, product_reference: "openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", }, product_reference: "openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", }, product_reference: "openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", }, product_reference: "openstack-ironic-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", }, product_reference: "openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", }, product_reference: "openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", }, product_reference: "openstack-keystone-14.2.1~dev9-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", }, product_reference: "openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", }, product_reference: "openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-Pillow-5.2.0-3.17.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", }, product_reference: "python-Pillow-5.2.0-3.17.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", }, product_reference: "python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-barbican-7.0.1~dev24-3.14.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", }, product_reference: "python-barbican-7.0.1~dev24-3.14.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-cinder-13.0.10~dev24-3.34.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", }, product_reference: "python-cinder-13.0.10~dev24-3.34.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", }, product_reference: "python-heat-gbp-14.0.1~dev4-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", }, product_reference: "python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-ironic-11.1.5~dev18-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", }, product_reference: "python-ironic-11.1.5~dev18-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-keystone-14.2.1~dev9-3.28.2.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", }, product_reference: "python-keystone-14.2.1~dev9-3.28.2.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-lxml-4.2.4-3.3.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", }, product_reference: "python-lxml-4.2.4-3.3.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-13.0.8~dev206-3.40.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", }, product_reference: "python-neutron-13.0.8~dev206-3.40.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", }, product_reference: "python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", }, product_reference: "release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, { category: "default_component_of", full_product_name: { name: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64 as component of SUSE OpenStack Cloud Crowbar 9", product_id: "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", }, product_reference: "ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", relates_to_product_reference: "SUSE OpenStack Cloud Crowbar 9", }, ], }, vulnerabilities: [ { cve: "CVE-2018-19787", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2018-19787", }, ], notes: [ { category: "general", text: "An issue was discovered in lxml before 4.2.5. lxml/html/clean.py in the lxml.html.clean module does not remove javascript: URLs that use escaping, allowing a remote attacker to conduct XSS attacks, as demonstrated by \"j a v a s c r i p t:\" in Internet Explorer. This is a similar issue to CVE-2014-3146.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2018-19787", url: "https://www.suse.com/security/cve/CVE-2018-19787", }, { category: "external", summary: "SUSE Bug 1118088 for CVE-2018-19787", url: "https://bugzilla.suse.com/1118088", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.4, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2018-19787", }, { cve: "CVE-2020-27783", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-27783", }, ], notes: [ { category: "general", text: "A XSS vulnerability was discovered in python-lxml's clean module. The module's parser didn't properly imitate browsers, which caused different behaviors between the sanitizer and the user's page. A remote attacker could exploit this flaw to run arbitrary HTML/JS code.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-27783", url: "https://www.suse.com/security/cve/CVE-2020-27783", }, { category: "external", summary: "SUSE Bug 1179534 for CVE-2020-27783", url: "https://bugzilla.suse.com/1179534", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2020-27783", }, { cve: "CVE-2021-28957", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-28957", }, ], notes: [ { category: "general", text: "An XSS vulnerability was discovered in python-lxml's clean module versions before 4.6.3. When disabling the safe_attrs_only and forms arguments, the Cleaner class does not remove the formaction attribute allowing for JS to bypass the sanitizer. A remote attacker could exploit this flaw to run arbitrary JS code on users who interact with incorrectly sanitized HTML. This issue is patched in lxml 4.6.3.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-28957", url: "https://www.suse.com/security/cve/CVE-2021-28957", }, { category: "external", summary: "SUSE Bug 1184177 for CVE-2021-28957", url: "https://bugzilla.suse.com/1184177", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2021-28957", }, { cve: "CVE-2021-38155", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-38155", }, ], notes: [ { category: "general", text: "OpenStack Keystone 10.x through 16.x before 16.0.2, 17.x before 17.0.1, 18.x before 18.0.1, and 19.x before 19.0.1 allows information disclosure during account locking (related to PCI DSS features). By guessing the name of an account and failing to authenticate multiple times, any unauthenticated actor could both confirm the account exists and obtain that account's corresponding UUID, which might be leveraged for other unrelated attacks. All deployments enabling security_compliance.lockout_failure_attempts are affected.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-38155", url: "https://www.suse.com/security/cve/CVE-2021-38155", }, { category: "external", summary: "SUSE Bug 1189390 for CVE-2021-38155", url: "https://bugzilla.suse.com/1189390", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "important", }, ], title: "CVE-2021-38155", }, { cve: "CVE-2021-40085", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-40085", }, ], notes: [ { category: "general", text: "An issue was discovered in OpenStack Neutron before 16.4.1, 17.x before 17.2.1, and 18.x before 18.1.1. Authenticated attackers can reconfigure dnsmasq via a crafted extra_dhcp_opts value.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-40085", url: "https://www.suse.com/security/cve/CVE-2021-40085", }, { category: "external", summary: "SUSE Bug 1189794 for CVE-2021-40085", url: "https://bugzilla.suse.com/1189794", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "important", }, ], title: "CVE-2021-40085", }, { cve: "CVE-2021-41182", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41182", }, ], notes: [ { category: "general", text: "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `altField` option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `altField` option is now treated as a CSS selector. A workaround is to not accept the value of the `altField` option from untrusted sources.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41182", url: "https://www.suse.com/security/cve/CVE-2021-41182", }, { category: "external", summary: "SUSE Bug 1192070 for CVE-2021-41182", url: "https://bugzilla.suse.com/1192070", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2021-41182", }, { cve: "CVE-2021-41183", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41183", }, ], notes: [ { category: "general", text: "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of various `*Text` options of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. The values passed to various `*Text` options are now always treated as pure text, not HTML. A workaround is to not accept the value of the `*Text` options from untrusted sources.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41183", url: "https://www.suse.com/security/cve/CVE-2021-41183", }, { category: "external", summary: "SUSE Bug 1192075 for CVE-2021-41183", url: "https://bugzilla.suse.com/1192075", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2021-41183", }, { cve: "CVE-2021-41184", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-41184", }, ], notes: [ { category: "general", text: "jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the `of` option of the `.position()` util from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string value passed to the `of` option is now treated as a CSS selector. A workaround is to not accept the value of the `of` option from untrusted sources.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-41184", url: "https://www.suse.com/security/cve/CVE-2021-41184", }, { category: "external", summary: "SUSE Bug 1192073 for CVE-2021-41184", url: "https://bugzilla.suse.com/1192073", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2021-41184", }, { cve: "CVE-2021-43813", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-43813", }, ], notes: [ { category: "general", text: "Grafana is an open-source platform for monitoring and observability. Grafana prior to versions 8.3.2 and 7.5.12 contains a directory traversal vulnerability for fully lowercase or fully uppercase .md files. The vulnerability is limited in scope, and only allows access to files with the extension .md to authenticated users only. Grafana Cloud instances have not been affected by the vulnerability. Users should upgrade to patched versions 8.3.2 or 7.5.12. For users who cannot upgrade, running a reverse proxy in front of Grafana that normalizes the PATH of the request will mitigate the vulnerability. The proxy will have to also be able to handle url encoded paths. Alternatively, for fully lowercase or fully uppercase .md files, users can block /api/plugins/.*/markdown/.* without losing any functionality beyond inlined plugin help text.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-43813", url: "https://www.suse.com/security/cve/CVE-2021-43813", }, { category: "external", summary: "SUSE Bug 1193686 for CVE-2021-43813", url: "https://bugzilla.suse.com/1193686", }, { category: "external", summary: "SUSE Bug 1193688 for CVE-2021-43813", url: "https://bugzilla.suse.com/1193688", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.3, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2021-43813", }, { cve: "CVE-2021-43818", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-43818", }, ], notes: [ { category: "general", text: "lxml is a library for processing XML and HTML in the Python language. Prior to version 4.6.5, the HTML Cleaner in lxml.html lets certain crafted script content pass through, as well as script content in SVG files embedded using data URIs. Users that employ the HTML cleaner in a security relevant context should upgrade to lxml 4.6.5 to receive a patch. There are no known workarounds available.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-43818", url: "https://www.suse.com/security/cve/CVE-2021-43818", }, { category: "external", summary: "SUSE Bug 1193752 for CVE-2021-43818", url: "https://bugzilla.suse.com/1193752", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.1, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2021-43818", }, { cve: "CVE-2021-44716", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-44716", }, ], notes: [ { category: "general", text: "net/http in Go before 1.16.12 and 1.17.x before 1.17.5 allows uncontrolled memory consumption in the header canonicalization cache via HTTP/2 requests.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-44716", url: "https://www.suse.com/security/cve/CVE-2021-44716", }, { category: "external", summary: "SUSE Bug 1193597 for CVE-2021-44716", url: "https://bugzilla.suse.com/1193597", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "important", }, ], title: "CVE-2021-44716", }, { cve: "CVE-2022-22815", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22815", }, ], notes: [ { category: "general", text: "path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22815", url: "https://www.suse.com/security/cve/CVE-2022-22815", }, { category: "external", summary: "SUSE Bug 1194552 for CVE-2022-22815", url: "https://bugzilla.suse.com/1194552", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "low", }, ], title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22816", }, ], notes: [ { category: "general", text: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22816", url: "https://www.suse.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "SUSE Bug 1194551 for CVE-2022-22816", url: "https://bugzilla.suse.com/1194551", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "low", }, ], title: "CVE-2022-22816", }, { cve: "CVE-2022-22817", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22817", }, ], notes: [ { category: "general", text: "PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22817", url: "https://www.suse.com/security/cve/CVE-2022-22817", }, { category: "external", summary: "SUSE Bug 1194521 for CVE-2022-22817", url: "https://bugzilla.suse.com/1194521", }, { category: "external", summary: "SUSE Bug 1219048 for CVE-2022-22817", url: "https://bugzilla.suse.com/1219048", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.8, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2022-22817", }, { cve: "CVE-2022-23451", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23451", }, ], notes: [ { category: "general", text: "An authorization flaw was found in openstack-barbican. The default policy rules for the secret metadata API allowed any authenticated user to add, modify, or delete metadata from any secret regardless of ownership. This flaw allows an attacker on the network to modify or delete protected data, causing a denial of service by consuming protected resources.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23451", url: "https://www.suse.com/security/cve/CVE-2022-23451", }, { category: "external", summary: "SUSE Bug 1194952 for CVE-2022-23451", url: "https://bugzilla.suse.com/1194952", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 6.5, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2022-23451", }, { cve: "CVE-2022-23452", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-23452", }, ], notes: [ { category: "general", text: "An authorization flaw was found in openstack-barbican, where anyone with an admin role could add secrets to a different project container. This flaw allows an attacker on the network to consume protected resources and cause a denial of service.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-23452", url: "https://www.suse.com/security/cve/CVE-2022-23452", }, { category: "external", summary: "SUSE Bug 1194954 for CVE-2022-23452", url: "https://bugzilla.suse.com/1194954", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 4.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "moderate", }, ], title: "CVE-2022-23452", }, { cve: "CVE-2022-29970", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-29970", }, ], notes: [ { category: "general", text: "Sinatra before 2.2.0 does not validate that the expanded path matches public_dir when serving static files.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-29970", url: "https://www.suse.com/security/cve/CVE-2022-29970", }, { category: "external", summary: "SUSE Bug 1199138 for CVE-2022-29970", url: "https://bugzilla.suse.com/1199138", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "SUSE OpenStack Cloud 9:ardana-barbican-9.0+git.1644879908.8a641c1-3.13.1.noarch", "SUSE OpenStack Cloud 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-barbican-x86_64-7.0.1~dev24-3.35.2.noarch", "SUSE OpenStack Cloud 9:venv-openstack-cinder-x86_64-13.0.10~dev24-3.38.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-designate-x86_64-7.0.2~dev2-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-glance-x86_64-17.0.1~dev30-3.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-heat-x86_64-11.0.4~dev4-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-horizon-x86_64-14.1.1~dev11-4.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-ironic-x86_64-11.1.5~dev18-4.33.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-keystone-x86_64-14.2.1~dev9-3.36.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-magnum-x86_64-7.2.1~dev1-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-manila-x86_64-7.4.2~dev60-3.41.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-ceilometer-x86_64-1.8.2~dev3-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-monasca-x86_64-2.7.1~dev10-3.37.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-neutron-x86_64-13.0.8~dev206-6.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-nova-x86_64-18.3.1~dev91-3.39.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-octavia-x86_64-3.2.3~dev7-4.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-sahara-x86_64-9.0.2~dev15-3.35.1.noarch", "SUSE OpenStack Cloud 9:venv-openstack-swift-x86_64-2.19.2~dev48-2.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:grafana-6.7.4-3.26.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-api-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-keystone-listener-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-retry-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-barbican-worker-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-api-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-backup-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-scheduler-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-cinder-volume-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-api-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-ironic-conductor-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-dhcp-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-ha-tool-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-l3-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-linuxbridge-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-macvtap-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metadata-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-metering-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-openvswitch-agent-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:openstack-neutron-server-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-Pillow-5.2.0-3.17.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-XStatic-jquery-ui-1.13.0.1-4.3.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-barbican-7.0.1~dev24-3.14.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-cinder-13.0.10~dev24-3.34.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-heat-gbp-14.0.1~dev4-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-horizon-plugin-gbp-ui-14.0.1~dev3-3.9.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-ironic-11.1.5~dev18-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-keystone-14.2.1~dev9-3.28.2.noarch", "SUSE OpenStack Cloud Crowbar 9:python-lxml-4.2.4-3.3.1.x86_64", "SUSE OpenStack Cloud Crowbar 9:python-neutron-13.0.8~dev206-3.40.1.noarch", "SUSE OpenStack Cloud Crowbar 9:python-neutron-gbp-14.0.1~dev33-3.31.1.noarch", "SUSE OpenStack Cloud Crowbar 9:release-notes-suse-openstack-cloud-9.20220413-3.30.1.noarch", "SUSE OpenStack Cloud Crowbar 9:ruby2.1-rubygem-sinatra-1.4.6-4.3.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2022-05-18T14:55:52Z", details: "important", }, ], title: "CVE-2022-29970", }, ], }
suse-su-2024:1673-1
Vulnerability from csaf_suse
Published
2024-05-17 07:30
Modified
2024-05-17 07:30
Summary
Security update for python-Pillow
Notes
Title of the patch
Security update for python-Pillow
Description of the patch
This update for python-Pillow fixes the following issues:
- Fixed ImagePath.Path array handling (bsc#1194552, CVE-2022-22815, bsc#1194551, CVE-2022-22816)
- Use snprintf instead of sprintf (bsc#1188574, CVE-2021-34552)
- Fix Memory DOS in Icns, Ico and Blp Image Plugins. (bsc#1183110, CVE-2021-27921, bsc#1183108, CVE-2021-27922, bsc#1183107, CVE-2021-27923)
- Fix OOB read in SgiRleDecode.c (bsc#1183102, CVE-2021-25293)
- Use more specific regex chars to prevent ReDoS (bsc#1183101, CVE-2021-25292)
- Fix negative size read in TiffDecode.c (bsc#1183105, CVE-2021-25290)
- Raise ValueError if color specifier is too long (bsc#1190229, CVE-2021-23437)
- Incorrect error code checking in TiffDecode.c (bsc#1183103, CVE-2021-25289)
- OOB Write in TiffDecode.c (bsc#1180833, CVE-2020-35654)
Patchnames
SUSE-2024-1673,openSUSE-SLE-15.5-2024-1673
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "critical", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Pillow", title: "Title of the patch", }, { category: "description", text: "This update for python-Pillow fixes the following issues:\n\n- Fixed ImagePath.Path array handling (bsc#1194552, CVE-2022-22815, bsc#1194551, CVE-2022-22816)\n- Use snprintf instead of sprintf (bsc#1188574, CVE-2021-34552)\n- Fix Memory DOS in Icns, Ico and Blp Image Plugins. (bsc#1183110, CVE-2021-27921, bsc#1183108, CVE-2021-27922, bsc#1183107, CVE-2021-27923)\n- Fix OOB read in SgiRleDecode.c (bsc#1183102, CVE-2021-25293)\n- Use more specific regex chars to prevent ReDoS (bsc#1183101, CVE-2021-25292)\n- Fix negative size read in TiffDecode.c (bsc#1183105, CVE-2021-25290)\n- Raise ValueError if color specifier is too long (bsc#1190229, CVE-2021-23437)\n- Incorrect error code checking in TiffDecode.c (bsc#1183103, CVE-2021-25289)\n- OOB Write in TiffDecode.c (bsc#1180833, CVE-2020-35654)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2024-1673,openSUSE-SLE-15.5-2024-1673", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_1673-1.json", }, { category: "self", summary: "URL for SUSE-SU-2024:1673-1", url: "https://www.suse.com/support/update/announcement/2024/suse-su-20241673-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2024:1673-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018541.html", }, { category: "self", summary: "SUSE Bug 1180833", url: "https://bugzilla.suse.com/1180833", }, { category: "self", summary: "SUSE Bug 1183101", url: "https://bugzilla.suse.com/1183101", }, { category: "self", summary: "SUSE Bug 1183102", url: "https://bugzilla.suse.com/1183102", }, { category: "self", summary: "SUSE Bug 1183103", url: "https://bugzilla.suse.com/1183103", }, { category: "self", summary: "SUSE Bug 1183105", url: "https://bugzilla.suse.com/1183105", }, { category: "self", summary: "SUSE Bug 1183107", url: "https://bugzilla.suse.com/1183107", }, { category: "self", summary: "SUSE Bug 1183108", url: "https://bugzilla.suse.com/1183108", }, { category: "self", summary: "SUSE Bug 1183110", url: "https://bugzilla.suse.com/1183110", }, { category: "self", summary: "SUSE Bug 1188574", url: "https://bugzilla.suse.com/1188574", }, { category: "self", summary: "SUSE Bug 1190229", url: "https://bugzilla.suse.com/1190229", }, { category: "self", summary: "SUSE Bug 1194551", url: "https://bugzilla.suse.com/1194551", }, { category: "self", summary: "SUSE Bug 1194552", url: "https://bugzilla.suse.com/1194552", }, { category: "self", summary: "SUSE CVE CVE-2020-35654 page", url: "https://www.suse.com/security/cve/CVE-2020-35654/", }, { category: "self", summary: "SUSE CVE CVE-2021-23437 page", url: "https://www.suse.com/security/cve/CVE-2021-23437/", }, { category: "self", summary: "SUSE CVE CVE-2021-25289 page", url: "https://www.suse.com/security/cve/CVE-2021-25289/", }, { category: "self", summary: "SUSE CVE CVE-2021-25290 page", url: "https://www.suse.com/security/cve/CVE-2021-25290/", }, { category: "self", summary: "SUSE CVE CVE-2021-25292 page", url: "https://www.suse.com/security/cve/CVE-2021-25292/", }, { category: "self", summary: "SUSE CVE CVE-2021-25293 page", url: "https://www.suse.com/security/cve/CVE-2021-25293/", }, { category: "self", summary: "SUSE CVE CVE-2021-27921 page", url: "https://www.suse.com/security/cve/CVE-2021-27921/", }, { category: "self", summary: "SUSE CVE CVE-2021-27922 page", url: "https://www.suse.com/security/cve/CVE-2021-27922/", }, { category: "self", summary: "SUSE CVE CVE-2021-27923 page", url: "https://www.suse.com/security/cve/CVE-2021-27923/", }, { category: "self", summary: "SUSE CVE CVE-2021-34552 page", url: "https://www.suse.com/security/cve/CVE-2021-34552/", }, { category: "self", summary: "SUSE CVE CVE-2022-22815 page", url: "https://www.suse.com/security/cve/CVE-2022-22815/", }, { category: "self", summary: "SUSE CVE CVE-2022-22816 page", url: "https://www.suse.com/security/cve/CVE-2022-22816/", }, ], title: "Security update for python-Pillow", tracking: { current_release_date: "2024-05-17T07:30:17Z", generator: { date: "2024-05-17T07:30:17Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2024:1673-1", initial_release_date: "2024-05-17T07:30:17Z", revision_history: [ { date: "2024-05-17T07:30:17Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", product_id: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.i586", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.i586", product_id: "python3-Pillow-7.2.0-150300.3.15.1.i586", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.i586", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.i586", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", product_id: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.s390x", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.s390x", product_id: "python3-Pillow-7.2.0-150300.3.15.1.s390x", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", product: { name: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", product_id: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", }, }, { category: "product_version", name: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", product: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", product_id: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Leap 15.5", product: { name: "openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.aarch64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.s390x as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.s390x", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-7.2.0-150300.3.15.1.x86_64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", }, product_reference: "python3-Pillow-7.2.0-150300.3.15.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", }, product_reference: "python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", }, product_reference: "python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", }, product_reference: "python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", }, product_reference: "python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.5", }, ], }, vulnerabilities: [ { cve: "CVE-2020-35654", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2020-35654", }, ], notes: [ { category: "general", text: "In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2020-35654", url: "https://www.suse.com/security/cve/CVE-2020-35654", }, { category: "external", summary: "SUSE Bug 1180833 for CVE-2020-35654", url: "https://bugzilla.suse.com/1180833", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2020-35654", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 8.8, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2020-35654", }, { cve: "CVE-2021-23437", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-23437", }, ], notes: [ { category: "general", text: "The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-23437", url: "https://www.suse.com/security/cve/CVE-2021-23437", }, { category: "external", summary: "SUSE Bug 1190229 for CVE-2021-23437", url: "https://bugzilla.suse.com/1190229", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-23437", }, { cve: "CVE-2021-25289", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25289", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE: this issue exists because of an incomplete fix for CVE-2020-35654.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25289", url: "https://www.suse.com/security/cve/CVE-2021-25289", }, { category: "external", summary: "SUSE Bug 1183103 for CVE-2021-25289", url: "https://bugzilla.suse.com/1183103", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 9.8, baseSeverity: "CRITICAL", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "critical", }, ], title: "CVE-2021-25289", }, { cve: "CVE-2021-25290", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25290", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. In TiffDecode.c, there is a negative-offset memcpy with an invalid size.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25290", url: "https://www.suse.com/security/cve/CVE-2021-25290", }, { category: "external", summary: "SUSE Bug 1183105 for CVE-2021-25290", url: "https://bugzilla.suse.com/1183105", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-25290", }, { cve: "CVE-2021-25292", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25292", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. The PDF parser allows a regular expression DoS (ReDoS) attack via a crafted PDF file because of a catastrophic backtracking regex.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25292", url: "https://www.suse.com/security/cve/CVE-2021-25292", }, { category: "external", summary: "SUSE Bug 1183101 for CVE-2021-25292", url: "https://bugzilla.suse.com/1183101", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-25292", }, { cve: "CVE-2021-25293", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-25293", }, ], notes: [ { category: "general", text: "An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-25293", url: "https://www.suse.com/security/cve/CVE-2021-25293", }, { category: "external", summary: "SUSE Bug 1183102 for CVE-2021-25293", url: "https://bugzilla.suse.com/1183102", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-25293", }, { cve: "CVE-2021-27921", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27921", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27921", url: "https://www.suse.com/security/cve/CVE-2021-27921", }, { category: "external", summary: "SUSE Bug 1183110 for CVE-2021-27921", url: "https://bugzilla.suse.com/1183110", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-27921", }, { cve: "CVE-2021-27922", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27922", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICNS container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27922", url: "https://www.suse.com/security/cve/CVE-2021-27922", }, { category: "external", summary: "SUSE Bug 1183108 for CVE-2021-27922", url: "https://bugzilla.suse.com/1183108", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-27922", }, { cve: "CVE-2021-27923", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-27923", }, ], notes: [ { category: "general", text: "Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICO container, and thus an attempted memory allocation can be very large.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-27923", url: "https://www.suse.com/security/cve/CVE-2021-27923", }, { category: "external", summary: "SUSE Bug 1183107 for CVE-2021-27923", url: "https://bugzilla.suse.com/1183107", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-27923", }, { cve: "CVE-2021-34552", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2021-34552", }, ], notes: [ { category: "general", text: "Pillow through 8.2.0 and PIL (aka Python Imaging Library) through 1.1.7 allow an attacker to pass controlled parameters directly into a convert function to trigger a buffer overflow in Convert.c.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2021-34552", url: "https://www.suse.com/security/cve/CVE-2021-34552", }, { category: "external", summary: "SUSE Bug 1188574 for CVE-2021-34552", url: "https://bugzilla.suse.com/1188574", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 7.5, baseSeverity: "HIGH", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "important", }, ], title: "CVE-2021-34552", }, { cve: "CVE-2022-22815", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22815", }, ], notes: [ { category: "general", text: "path_getbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22815", url: "https://www.suse.com/security/cve/CVE-2022-22815", }, { category: "external", summary: "SUSE Bug 1194552 for CVE-2022-22815", url: "https://bugzilla.suse.com/1194552", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "low", }, ], title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2022-22816", }, ], notes: [ { category: "general", text: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2022-22816", url: "https://www.suse.com/security/cve/CVE-2022-22816", }, { category: "external", summary: "SUSE Bug 1194551 for CVE-2022-22816", url: "https://bugzilla.suse.com/1194551", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 3.3, baseSeverity: "LOW", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-7.2.0-150300.3.15.1.x86_64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.aarch64", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.ppc64le", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.s390x", "openSUSE Leap 15.5:python3-Pillow-tk-7.2.0-150300.3.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-05-17T07:30:17Z", details: "low", }, ], title: "CVE-2022-22816", }, ], }
ghsa-xrcv-f9gm-v42c
Vulnerability from github
Published
2022-01-12 20:07
Modified
2024-10-11 21:27
Severity ?
6.5 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
6.9 (Medium) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
6.9 (Medium) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N
Summary
Out-of-bounds Read in Pillow
Details
path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.
{ affected: [ { package: { ecosystem: "PyPI", name: "pillow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "9.0.0", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2022-22816", ], database_specific: { cwe_ids: [ "CWE-125", ], github_reviewed: true, github_reviewed_at: "2022-01-11T18:02:58Z", nvd_published_at: "2022-01-10T14:12:00Z", severity: "MODERATE", }, details: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", id: "GHSA-xrcv-f9gm-v42c", modified: "2024-10-11T21:27:28Z", published: "2022-01-12T20:07:41Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/pull/5920", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/commit/5543e4e2d409cd9e409bc64cdc77be0af007a31f", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-xrcv-f9gm-v42c", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/pillow/PYSEC-2022-9.yaml", }, { type: "PACKAGE", url: "https://github.com/python-pillow/Pillow", }, { type: "WEB", url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { type: "WEB", url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { type: "WEB", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { type: "WEB", url: "https://security.gentoo.org/glsa/202211-10", }, { type: "WEB", url: "https://www.debian.org/security/2022/dsa-5053", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", type: "CVSS_V3", }, { score: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N", type: "CVSS_V4", }, ], summary: "Out-of-bounds Read in Pillow", }
wid-sec-w-2022-0302
Vulnerability from csaf_certbund
Published
2022-06-14 22:00
Modified
2023-04-03 22:00
Summary
Xerox FreeFlow Print Server: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Administratorrechten
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Angriff
Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-0302 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0302.json", }, { category: "self", summary: "WID-SEC-2022-0302 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0302", }, { category: "external", summary: "XEROX Security Advisory XRX23-005 vom 2023-04-04", url: "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-015", url: "https://security.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-015-FreeFlow-Print-Server-v7.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-013 vom 2022-06-14", url: "https://securitydocs.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-013-FreeFlow-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-012 vom 2022-06-14", url: "https://securitydocs.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-012-FreeFlow-Printer.pdf", }, ], source_lang: "en-US", title: "Xerox FreeFlow Print Server: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Administratorrechten", tracking: { current_release_date: "2023-04-03T22:00:00.000+00:00", generator: { date: "2024-08-15T17:27:55.136+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-0302", initial_release_date: "2022-06-14T22:00:00.000+00:00", revision_history: [ { date: "2022-06-14T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2022-06-21T22:00:00.000+00:00", number: "2", summary: "Neue Updates von XEROX aufgenommen", }, { date: "2023-04-03T22:00:00.000+00:00", number: "3", summary: "Neue Updates von XEROX aufgenommen", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Xerox FreeFlow Print Server 7", product: { name: "Xerox FreeFlow Print Server 7", product_id: "T000872", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:7", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server 9", product: { name: "Xerox FreeFlow Print Server 9", product_id: "T002977", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:9", }, }, }, ], category: "product_name", name: "FreeFlow Print Server", }, ], category: "vendor", name: "Xerox", }, ], }, vulnerabilities: [ { cve: "CVE-2016-2124", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2016-2124", }, { cve: "CVE-2019-14822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2019-14822", }, { cve: "CVE-2019-19906", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2019-19906", }, { cve: "CVE-2020-15250", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-15250", }, { cve: "CVE-2020-17049", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-17049", }, { cve: "CVE-2020-25717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25717", }, { cve: "CVE-2020-25718", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25718", }, { cve: "CVE-2020-25719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25719", }, { cve: "CVE-2020-25721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25721", }, { cve: "CVE-2020-25722", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25722", }, { cve: "CVE-2020-9484", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-9484", }, { cve: "CVE-2021-21707", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-21707", }, { cve: "CVE-2021-22926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-22926", }, { cve: "CVE-2021-23192", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-23192", }, { cve: "CVE-2021-27815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-27815", }, { cve: "CVE-2021-30846", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30846", }, { cve: "CVE-2021-30848", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30848", }, { cve: "CVE-2021-30849", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30849", }, { cve: "CVE-2021-30851", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30851", }, { cve: "CVE-2021-30858", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30858", }, { cve: "CVE-2021-33430", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-33430", }, { cve: "CVE-2021-34141", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-34141", }, { cve: "CVE-2021-35604", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-35604", }, { cve: "CVE-2021-35624", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-35624", }, { cve: "CVE-2021-3572", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3572", }, { cve: "CVE-2021-3711", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3711", }, { cve: "CVE-2021-3733", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3733", }, { cve: "CVE-2021-3737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3737", }, { cve: "CVE-2021-3738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3738", }, { cve: "CVE-2021-3770", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3770", }, { cve: "CVE-2021-3778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3778", }, { cve: "CVE-2021-3796", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3796", }, { cve: "CVE-2021-38115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-38115", }, { cve: "CVE-2021-3872", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3872", }, { cve: "CVE-2021-3875", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3875", }, { cve: "CVE-2021-3903", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3903", }, { cve: "CVE-2021-39212", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39212", }, { cve: "CVE-2021-39272", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39272", }, { cve: "CVE-2021-3928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3928", }, { cve: "CVE-2021-3968", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3968", }, { cve: "CVE-2021-3973", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3973", }, { cve: "CVE-2021-3974", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3974", }, { cve: "CVE-2021-3984", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3984", }, { cve: "CVE-2021-39920", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39920", }, { cve: "CVE-2021-39921", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39921", }, { cve: "CVE-2021-39922", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39922", }, { cve: "CVE-2021-39923", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39923", }, { cve: "CVE-2021-39924", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39924", }, { cve: "CVE-2021-39925", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39925", }, { cve: "CVE-2021-39926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39926", }, { cve: "CVE-2021-39928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39928", }, { cve: "CVE-2021-39929", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39929", }, { cve: "CVE-2021-4008", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4008", }, { cve: "CVE-2021-4009", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4009", }, { cve: "CVE-2021-4010", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4010", }, { cve: "CVE-2021-4011", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4011", }, { cve: "CVE-2021-40145", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-40145", }, { cve: "CVE-2021-4019", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4019", }, { cve: "CVE-2021-4034", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4034", }, { cve: "CVE-2021-4069", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4069", }, { cve: "CVE-2021-40812", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-40812", }, { cve: "CVE-2021-41133", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41133", }, { cve: "CVE-2021-4140", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4140", }, { cve: "CVE-2021-41495", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41495", }, { cve: "CVE-2021-41496", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41496", }, { cve: "CVE-2021-4160", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4160", }, { cve: "CVE-2021-4181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4181", }, { cve: "CVE-2021-41817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41817", }, { cve: "CVE-2021-41819", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41819", }, { cve: "CVE-2021-4182", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4182", }, { cve: "CVE-2021-4183", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4183", }, { cve: "CVE-2021-4184", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4184", }, { cve: "CVE-2021-4185", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4185", }, { cve: "CVE-2021-42717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-42717", }, { cve: "CVE-2021-42762", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-42762", }, { cve: "CVE-2021-43331", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43331", }, { cve: "CVE-2021-43332", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43332", }, { cve: "CVE-2021-43395", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43395", }, { cve: "CVE-2021-43527", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43527", }, { cve: "CVE-2021-43528", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43528", }, { cve: "CVE-2021-43536", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43536", }, { cve: "CVE-2021-43537", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43537", }, { cve: "CVE-2021-43538", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43538", }, { cve: "CVE-2021-43539", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43539", }, { cve: "CVE-2021-43541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43541", }, { cve: "CVE-2021-43542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43542", }, { cve: "CVE-2021-43543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43543", }, { cve: "CVE-2021-43545", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43545", }, { cve: "CVE-2021-43546", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43546", }, { cve: "CVE-2021-43566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43566", }, { cve: "CVE-2021-43818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43818", }, { cve: "CVE-2021-44142", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44142", }, { cve: "CVE-2021-44224", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44224", }, { cve: "CVE-2021-44227", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44227", }, { cve: "CVE-2021-44420", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44420", }, { cve: "CVE-2021-44531", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44531", }, { cve: "CVE-2021-44532", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44532", }, { cve: "CVE-2021-44533", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44533", }, { cve: "CVE-2021-44540", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44540", }, { cve: "CVE-2021-44541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44541", }, { cve: "CVE-2021-44542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44542", }, { cve: "CVE-2021-44543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44543", }, { cve: "CVE-2021-44790", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44790", }, { cve: "CVE-2021-45078", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45078", }, { cve: "CVE-2021-45115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45115", }, { cve: "CVE-2021-45116", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45116", }, { cve: "CVE-2021-45452", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45452", }, { cve: "CVE-2021-45960", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45960", }, { cve: "CVE-2021-46143", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-46143", }, { cve: "CVE-2022-0336", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0336", }, { cve: "CVE-2022-0391", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0391", }, { cve: "CVE-2022-0566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0566", }, { cve: "CVE-2022-0581", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0581", }, { cve: "CVE-2022-0582", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0582", }, { cve: "CVE-2022-0583", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0583", }, { cve: "CVE-2022-0585", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0585", }, { cve: "CVE-2022-0586", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0586", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-21248", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21248", }, { cve: "CVE-2022-21263", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21263", }, { cve: "CVE-2022-21271", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21271", }, { cve: "CVE-2022-21282", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21282", }, { cve: "CVE-2022-21291", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21291", }, { cve: "CVE-2022-21293", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21293", }, { cve: "CVE-2022-21294", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21294", }, { cve: "CVE-2022-21296", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21296", }, { cve: "CVE-2022-21298", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21298", }, { cve: "CVE-2022-21299", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21299", }, { cve: "CVE-2022-21305", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21305", }, { cve: "CVE-2022-21340", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21340", }, { cve: "CVE-2022-21341", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21341", }, { cve: "CVE-2022-21349", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21349", }, { cve: "CVE-2022-21360", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21360", }, { cve: "CVE-2022-21365", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21365", }, { cve: "CVE-2022-21375", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21375", }, { cve: "CVE-2022-21384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21384", }, { cve: "CVE-2022-21416", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21416", }, { cve: "CVE-2022-21446", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21446", }, { cve: "CVE-2022-21461", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21461", }, { cve: "CVE-2022-21463", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21463", }, { cve: "CVE-2022-21493", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21493", }, { cve: "CVE-2022-21494", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21494", }, { cve: "CVE-2022-21712", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21712", }, { cve: "CVE-2022-21716", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21716", }, { cve: "CVE-2022-21824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21824", }, { cve: "CVE-2022-22719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22719", }, { cve: "CVE-2022-22720", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22720", }, { cve: "CVE-2022-22721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22721", }, { cve: "CVE-2022-22737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22737", }, { cve: "CVE-2022-22738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22738", }, { cve: "CVE-2022-22739", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22739", }, { cve: "CVE-2022-22740", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22740", }, { cve: "CVE-2022-22741", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22741", }, { cve: "CVE-2022-22742", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22742", }, { cve: "CVE-2022-22743", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22743", }, { cve: "CVE-2022-22744", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22744", }, { cve: "CVE-2022-22745", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22745", }, { cve: "CVE-2022-22746", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22746", }, { cve: "CVE-2022-22747", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22747", }, { cve: "CVE-2022-22748", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22748", }, { cve: "CVE-2022-22751", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22751", }, { cve: "CVE-2022-22753", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22753", }, { cve: "CVE-2022-22754", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22754", }, { cve: "CVE-2022-22756", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22756", }, { cve: "CVE-2022-22759", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22759", }, { cve: "CVE-2022-22760", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22760", }, { cve: "CVE-2022-22761", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22761", }, { cve: "CVE-2022-22763", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22763", }, { cve: "CVE-2022-22764", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22764", }, { cve: "CVE-2022-22815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22816", }, { cve: "CVE-2022-22817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22817", }, { cve: "CVE-2022-22818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22818", }, { cve: "CVE-2022-22822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22822", }, { cve: "CVE-2022-22823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22823", }, { cve: "CVE-2022-22824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22824", }, { cve: "CVE-2022-22825", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22825", }, { cve: "CVE-2022-22826", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22826", }, { cve: "CVE-2022-22827", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22827", }, { cve: "CVE-2022-23181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23181", }, { cve: "CVE-2022-23833", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23833", }, { cve: "CVE-2022-23852", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23852", }, { cve: "CVE-2022-23943", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23943", }, { cve: "CVE-2022-23990", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23990", }, { cve: "CVE-2022-24407", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-24407", }, { cve: "CVE-2022-25235", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25235", }, { cve: "CVE-2022-25236", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25236", }, { cve: "CVE-2022-25313", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25313", }, { cve: "CVE-2022-25314", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25314", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-26381", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26381", }, { cve: "CVE-2022-26383", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26383", }, { cve: "CVE-2022-26384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26384", }, { cve: "CVE-2022-26386", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26386", }, { cve: "CVE-2022-26387", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26387", }, { cve: "CVE-2022-26485", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26485", }, { cve: "CVE-2022-26486", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26486", }, ], }
wid-sec-w-2025-0100
Vulnerability from csaf_certbund
Published
2022-02-22 23:00
Modified
2025-01-15 23:00
Summary
Red Hat Enterprise Linux: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Oracle Linux ist ein Open Source Betriebssystem, welches unter der GNU General Public License (GPL) verfügbar ist.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuführen oder Code auszuführen.
Betroffene Betriebssysteme
- Linux
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.\r\nOracle Linux ist ein Open Source Betriebssystem, welches unter der GNU General Public License (GPL) verfügbar ist.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Angriff durchzuführen oder Code auszuführen.", title: "Angriff", }, { category: "general", text: "- Linux", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2025-0100 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2025-0100.json", }, { category: "self", summary: "WID-SEC-2025-0100 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0100", }, { category: "external", summary: "RedHat Security Advisory vom 2022-02-22", url: "https://access.redhat.com/errata/RHSA-2022:0609", }, { category: "external", summary: "RedHat Security Advisory vom 2022-02-22", url: "https://access.redhat.com/errata/RHSA-2022:0643", }, { category: "external", summary: "Oracle Linux Security Advisory vom 2022-02-22", url: "https://linux.oracle.com/errata/ELSA-2022-0643.html", }, { category: "external", summary: "Oracle Linux Security Advisory ELSA-2022-0609 vom 2022-02-23", url: "http://linux.oracle.com/errata/ELSA-2022-0609.html", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2022:0669 vom 2022-02-24", url: "https://access.redhat.com/errata/RHSA-2022:0669", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2022:0665 vom 2022-02-24", url: "https://access.redhat.com/errata/RHSA-2022:0665", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2022:0667 vom 2022-02-24", url: "https://access.redhat.com/errata/RHSA-2022:0667", }, { category: "external", summary: "CentOS Security Advisory CESA-2022:0609 vom 2022-02-25", url: "https://lists.centos.org/pipermail/centos-announce/2022-February/073572.html", }, { category: "external", summary: "AVAYA Security Advisory ASA-2022-024 vom 2022-02-24", url: "https://downloads.avaya.com/css/P8/documents/101080628", }, { category: "external", summary: "Amazon Linux Security Advisory ALAS-2022-045 vom 2022-04-22", url: "https://alas.aws.amazon.com/AL2022/ALAS-2022-045.html", }, { category: "external", summary: "Amazon Linux Security Advisory ALAS2-2022-1786 vom 2022-04-27", url: "https://alas.aws.amazon.com/AL2/ALAS-2022-1786.html", }, { category: "external", summary: "openSUSE Security Update OPENSUSE-SU-2025:14645-1 vom 2025-01-15", url: "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/44PI4DZ7YJFTM3VMZXVNEBF2OQQVHGKN/", }, ], source_lang: "en-US", title: "Red Hat Enterprise Linux: Mehrere Schwachstellen", tracking: { current_release_date: "2025-01-15T23:00:00.000+00:00", generator: { date: "2025-01-16T09:22:22.154+00:00", engine: { name: "BSI-WID", version: "1.3.10", }, }, id: "WID-SEC-W-2025-0100", initial_release_date: "2022-02-22T23:00:00.000+00:00", revision_history: [ { date: "2022-02-22T23:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2022-02-23T23:00:00.000+00:00", number: "2", summary: "Neue Updates von Oracle Linux aufgenommen", }, { date: "2022-02-24T23:00:00.000+00:00", number: "3", summary: "Neue Updates von Red Hat aufgenommen", }, { date: "2022-02-27T23:00:00.000+00:00", number: "4", summary: "Neue Updates von CentOS und AVAYA aufgenommen", }, { date: "2022-04-24T22:00:00.000+00:00", number: "5", summary: "Neue Updates von Amazon aufgenommen", }, { date: "2022-04-27T22:00:00.000+00:00", number: "6", summary: "Neue Updates von Amazon aufgenommen", }, { date: "2025-01-15T23:00:00.000+00:00", number: "7", summary: "Neue Updates von openSUSE aufgenommen", }, ], status: "final", version: "7", }, }, product_tree: { branches: [ { branches: [ { category: "product_name", name: "Amazon Linux 2", product: { name: "Amazon Linux 2", product_id: "398363", product_identification_helper: { cpe: "cpe:/o:amazon:linux_2:-", }, }, }, ], category: "vendor", name: "Amazon", }, { branches: [ { category: "product_name", name: "Avaya Aura Application Enablement Services", product: { name: "Avaya Aura Application Enablement Services", product_id: "T015516", product_identification_helper: { cpe: "cpe:/a:avaya:aura_application_enablement_services:-", }, }, }, { category: "product_name", name: "Avaya Aura Communication Manager", product: { name: "Avaya Aura Communication Manager", product_id: "T015126", product_identification_helper: { cpe: "cpe:/a:avaya:communication_manager:-", }, }, }, { category: "product_name", name: "Avaya Aura Session Manager", product: { name: "Avaya Aura Session Manager", product_id: "T015127", product_identification_helper: { cpe: "cpe:/a:avaya:session_manager:-", }, }, }, { category: "product_name", name: "Avaya Aura System Manager", product: { name: "Avaya Aura System Manager", product_id: "T015518", product_identification_helper: { cpe: "cpe:/a:avaya:aura_system_manager:-", }, }, }, { category: "product_name", name: "Avaya Web License Manager", product: { name: "Avaya Web License Manager", product_id: "T016243", product_identification_helper: { cpe: "cpe:/a:avaya:web_license_manager:-", }, }, }, ], category: "vendor", name: "Avaya", }, { branches: [ { category: "product_name", name: "Open Source CentOS", product: { name: "Open Source CentOS", product_id: "1727", product_identification_helper: { cpe: "cpe:/o:centos:centos:-", }, }, }, ], category: "vendor", name: "Open Source", }, { branches: [ { branches: [ { category: "product_version", name: "8", product: { name: "Oracle Linux 8", product_id: "T022139", product_identification_helper: { cpe: "cpe:/o:oracle:linux:8", }, }, }, ], category: "product_name", name: "Linux", }, ], category: "vendor", name: "Oracle", }, { branches: [ { branches: [ { category: "product_version", name: "7", product: { name: "Red Hat Enterprise Linux 7", product_id: "T006643", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:7", }, }, }, { category: "product_version", name: "8", product: { name: "Red Hat Enterprise Linux 8", product_id: "T014111", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:8", }, }, }, ], category: "product_name", name: "Enterprise Linux", }, ], category: "vendor", name: "Red Hat", }, { branches: [ { category: "product_name", name: "SUSE openSUSE", product: { name: "SUSE openSUSE", product_id: "T027843", product_identification_helper: { cpe: "cpe:/o:suse:opensuse:-", }, }, }, ], category: "vendor", name: "SUSE", }, ], }, vulnerabilities: [ { cve: "CVE-2022-22816", notes: [ { category: "description", text: "Es existiert eine Schwachstelle in Red Hat Enterprise Linux. In Python-Pillow kommt es während der Initialisierung von ImagePath.Path in path_getbbox() in path.c zu einem Buffer over-read. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um falsche Ergebnisse oder Abstürze verursachen.", }, ], product_status: { known_affected: [ "T006643", "T015518", "T015516", "T022139", "T027843", "T015127", "398363", "T015126", "1727", "T014111", "T016243", ], }, release_date: "2022-02-22T23:00:00.000+00:00", title: "CVE-2022-22816", }, { cve: "CVE-2022-22817", notes: [ { category: "description", text: "Es existiert eine Schwachstelle in Red Hat Enterprise Linux in Python-Pillow. Eine unzulässige Neutralisierung in PIL.ImageMath.eval während der Auswertung beliebiger Ausdrücke kann zu einer Befehlsinjektion führen. Ein entfernter anonymer Angreifer kann diese Schwachstelle ausnutzen, um Code auszuführen.", }, ], product_status: { known_affected: [ "T006643", "T022139", "T027843", "398363", "1727", "T014111", ], }, release_date: "2022-02-22T23:00:00.000+00:00", title: "CVE-2022-22817", }, ], }
WID-SEC-W-2022-0432
Vulnerability from csaf_certbund
Published
2022-06-21 22:00
Modified
2023-04-03 22:00
Summary
Xerox FreeFlow Print Server: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Angriff
Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-0432 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0432.json", }, { category: "self", summary: "WID-SEC-2022-0432 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0432", }, { category: "external", summary: "XEROX Security Advisory XRX23-005 vom 2023-04-04", url: "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Mini Bulletin XRX21A vom 2022-06-21", url: "https://security.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-014-FreeFlow-Print-Server-v9.pdf", }, ], source_lang: "en-US", title: "Xerox FreeFlow Print Server: Mehrere Schwachstellen", tracking: { current_release_date: "2023-04-03T22:00:00.000+00:00", generator: { date: "2024-08-15T17:29:02.928+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-0432", initial_release_date: "2022-06-21T22:00:00.000+00:00", revision_history: [ { date: "2022-06-21T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-04-03T22:00:00.000+00:00", number: "2", summary: "Neue Updates von XEROX aufgenommen", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Xerox FreeFlow Print Server 9", product: { name: "Xerox FreeFlow Print Server 9", product_id: "T002977", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:9", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server v9", product: { name: "Xerox FreeFlow Print Server v9", product_id: "T015632", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:v9", }, }, }, ], category: "product_name", name: "FreeFlow Print Server", }, ], category: "vendor", name: "Xerox", }, ], }, vulnerabilities: [ { cve: "CVE-2016-2124", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2016-2124", }, { cve: "CVE-2019-14822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2019-14822", }, { cve: "CVE-2019-19906", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2019-19906", }, { cve: "CVE-2020-15250", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-15250", }, { cve: "CVE-2020-17049", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-17049", }, { cve: "CVE-2020-25717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25717", }, { cve: "CVE-2020-25718", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25718", }, { cve: "CVE-2020-25719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25719", }, { cve: "CVE-2020-25721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25721", }, { cve: "CVE-2020-25722", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25722", }, { cve: "CVE-2020-9484", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-9484", }, { cve: "CVE-2021-21707", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-21707", }, { cve: "CVE-2021-22926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-22926", }, { cve: "CVE-2021-23192", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-23192", }, { cve: "CVE-2021-27815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-27815", }, { cve: "CVE-2021-30846", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30846", }, { cve: "CVE-2021-30848", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30848", }, { cve: "CVE-2021-30849", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30849", }, { cve: "CVE-2021-30851", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30851", }, { cve: "CVE-2021-30858", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30858", }, { cve: "CVE-2021-33430", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-33430", }, { cve: "CVE-2021-34141", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-34141", }, { cve: "CVE-2021-35604", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-35604", }, { cve: "CVE-2021-35624", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-35624", }, { cve: "CVE-2021-3572", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3572", }, { cve: "CVE-2021-3711", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3711", }, { cve: "CVE-2021-3733", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3733", }, { cve: "CVE-2021-3737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3737", }, { cve: "CVE-2021-3738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3738", }, { cve: "CVE-2021-3770", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3770", }, { cve: "CVE-2021-3778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3778", }, { cve: "CVE-2021-3796", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3796", }, { cve: "CVE-2021-38115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-38115", }, { cve: "CVE-2021-3872", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3872", }, { cve: "CVE-2021-3875", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3875", }, { cve: "CVE-2021-3903", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3903", }, { cve: "CVE-2021-39212", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39212", }, { cve: "CVE-2021-39272", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39272", }, { cve: "CVE-2021-3928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3928", }, { cve: "CVE-2021-3968", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3968", }, { cve: "CVE-2021-3973", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3973", }, { cve: "CVE-2021-3974", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3974", }, { cve: "CVE-2021-3984", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3984", }, { cve: "CVE-2021-39920", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39920", }, { cve: "CVE-2021-39921", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39921", }, { cve: "CVE-2021-39922", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39922", }, { cve: "CVE-2021-39923", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39923", }, { cve: "CVE-2021-39924", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39924", }, { cve: "CVE-2021-39925", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39925", }, { cve: "CVE-2021-39926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39926", }, { cve: "CVE-2021-39928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39928", }, { cve: "CVE-2021-39929", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39929", }, { cve: "CVE-2021-4008", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4008", }, { cve: "CVE-2021-4009", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4009", }, { cve: "CVE-2021-4010", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4010", }, { cve: "CVE-2021-4011", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4011", }, { cve: "CVE-2021-40145", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-40145", }, { cve: "CVE-2021-4019", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4019", }, { cve: "CVE-2021-4034", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4034", }, { cve: "CVE-2021-4069", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4069", }, { cve: "CVE-2021-40812", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-40812", }, { cve: "CVE-2021-41133", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41133", }, { cve: "CVE-2021-4140", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4140", }, { cve: "CVE-2021-41495", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41495", }, { cve: "CVE-2021-41496", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41496", }, { cve: "CVE-2021-4181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4181", }, { cve: "CVE-2021-41817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41817", }, { cve: "CVE-2021-41819", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41819", }, { cve: "CVE-2021-4182", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4182", }, { cve: "CVE-2021-4183", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4183", }, { cve: "CVE-2021-4184", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4184", }, { cve: "CVE-2021-4185", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4185", }, { cve: "CVE-2021-42717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-42717", }, { cve: "CVE-2021-42762", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-42762", }, { cve: "CVE-2021-43331", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43331", }, { cve: "CVE-2021-43332", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43332", }, { cve: "CVE-2021-43395", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43395", }, { cve: "CVE-2021-43527", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43527", }, { cve: "CVE-2021-43528", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43528", }, { cve: "CVE-2021-43536", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43536", }, { cve: "CVE-2021-43537", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43537", }, { cve: "CVE-2021-43538", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43538", }, { cve: "CVE-2021-43539", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43539", }, { cve: "CVE-2021-43541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43541", }, { cve: "CVE-2021-43542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43542", }, { cve: "CVE-2021-43543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43543", }, { cve: "CVE-2021-43545", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43545", }, { cve: "CVE-2021-43546", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43546", }, { cve: "CVE-2021-43566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43566", }, { cve: "CVE-2021-43818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43818", }, { cve: "CVE-2021-44142", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44142", }, { cve: "CVE-2021-44224", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44224", }, { cve: "CVE-2021-44227", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44227", }, { cve: "CVE-2021-44420", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44420", }, { cve: "CVE-2021-44531", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44531", }, { cve: "CVE-2021-44532", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44532", }, { cve: "CVE-2021-44533", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44533", }, { cve: "CVE-2021-44540", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44540", }, { cve: "CVE-2021-44541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44541", }, { cve: "CVE-2021-44542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44542", }, { cve: "CVE-2021-44543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44543", }, { cve: "CVE-2021-44790", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44790", }, { cve: "CVE-2021-45078", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45078", }, { cve: "CVE-2021-45115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45115", }, { cve: "CVE-2021-45116", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45116", }, { cve: "CVE-2021-45452", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45452", }, { cve: "CVE-2021-45960", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45960", }, { cve: "CVE-2021-46143", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-46143", }, { cve: "CVE-2022-0336", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0336", }, { cve: "CVE-2022-0391", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0391", }, { cve: "CVE-2022-0566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0566", }, { cve: "CVE-2022-0581", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0581", }, { cve: "CVE-2022-0582", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0582", }, { cve: "CVE-2022-0583", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0583", }, { cve: "CVE-2022-0585", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0585", }, { cve: "CVE-2022-0586", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0586", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-21248", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21248", }, { cve: "CVE-2022-21263", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21263", }, { cve: "CVE-2022-21271", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21271", }, { cve: "CVE-2022-21282", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21282", }, { cve: "CVE-2022-21291", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21291", }, { cve: "CVE-2022-21293", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21293", }, { cve: "CVE-2022-21294", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21294", }, { cve: "CVE-2022-21296", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21296", }, { cve: "CVE-2022-21298", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21298", }, { cve: "CVE-2022-21299", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21299", }, { cve: "CVE-2022-21305", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21305", }, { cve: "CVE-2022-21340", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21340", }, { cve: "CVE-2022-21341", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21341", }, { cve: "CVE-2022-21349", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21349", }, { cve: "CVE-2022-21360", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21360", }, { cve: "CVE-2022-21365", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21365", }, { cve: "CVE-2022-21375", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21375", }, { cve: "CVE-2022-21384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21384", }, { cve: "CVE-2022-21416", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21416", }, { cve: "CVE-2022-21446", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21446", }, { cve: "CVE-2022-21461", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21461", }, { cve: "CVE-2022-21463", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21463", }, { cve: "CVE-2022-21493", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21493", }, { cve: "CVE-2022-21494", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21494", }, { cve: "CVE-2022-21712", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21712", }, { cve: "CVE-2022-21716", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21716", }, { cve: "CVE-2022-21824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21824", }, { cve: "CVE-2022-22719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22719", }, { cve: "CVE-2022-22720", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22720", }, { cve: "CVE-2022-22721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22721", }, { cve: "CVE-2022-22737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22737", }, { cve: "CVE-2022-22738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22738", }, { cve: "CVE-2022-22739", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22739", }, { cve: "CVE-2022-22740", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22740", }, { cve: "CVE-2022-22741", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22741", }, { cve: "CVE-2022-22742", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22742", }, { cve: "CVE-2022-22743", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22743", }, { cve: "CVE-2022-22744", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22744", }, { cve: "CVE-2022-22745", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22745", }, { cve: "CVE-2022-22746", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22746", }, { cve: "CVE-2022-22747", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22747", }, { cve: "CVE-2022-22748", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22748", }, { cve: "CVE-2022-22751", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22751", }, { cve: "CVE-2022-22753", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22753", }, { cve: "CVE-2022-22754", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22754", }, { cve: "CVE-2022-22756", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22756", }, { cve: "CVE-2022-22759", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22759", }, { cve: "CVE-2022-22760", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22760", }, { cve: "CVE-2022-22761", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22761", }, { cve: "CVE-2022-22763", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22763", }, { cve: "CVE-2022-22764", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22764", }, { cve: "CVE-2022-22815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22816", }, { cve: "CVE-2022-22817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22817", }, { cve: "CVE-2022-22818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22818", }, { cve: "CVE-2022-22822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22822", }, { cve: "CVE-2022-22823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22823", }, { cve: "CVE-2022-22824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22824", }, { cve: "CVE-2022-22825", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22825", }, { cve: "CVE-2022-22826", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22826", }, { cve: "CVE-2022-22827", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22827", }, { cve: "CVE-2022-23181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23181", }, { cve: "CVE-2022-23833", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23833", }, { cve: "CVE-2022-23852", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23852", }, { cve: "CVE-2022-23943", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23943", }, { cve: "CVE-2022-23990", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23990", }, { cve: "CVE-2022-24407", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-24407", }, { cve: "CVE-2022-25235", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25235", }, { cve: "CVE-2022-25236", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25236", }, { cve: "CVE-2022-25313", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25313", }, { cve: "CVE-2022-25314", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25314", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-26381", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26381", }, { cve: "CVE-2022-26383", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26383", }, { cve: "CVE-2022-26384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26384", }, { cve: "CVE-2022-26386", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26386", }, { cve: "CVE-2022-26387", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26387", }, { cve: "CVE-2022-26485", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26485", }, { cve: "CVE-2022-26486", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26486", }, ], }
wid-sec-w-2022-0432
Vulnerability from csaf_certbund
Published
2022-06-21 22:00
Modified
2023-04-03 22:00
Summary
Xerox FreeFlow Print Server: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Angriff
Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-0432 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0432.json", }, { category: "self", summary: "WID-SEC-2022-0432 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0432", }, { category: "external", summary: "XEROX Security Advisory XRX23-005 vom 2023-04-04", url: "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Mini Bulletin XRX21A vom 2022-06-21", url: "https://security.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-014-FreeFlow-Print-Server-v9.pdf", }, ], source_lang: "en-US", title: "Xerox FreeFlow Print Server: Mehrere Schwachstellen", tracking: { current_release_date: "2023-04-03T22:00:00.000+00:00", generator: { date: "2024-08-15T17:29:02.928+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-0432", initial_release_date: "2022-06-21T22:00:00.000+00:00", revision_history: [ { date: "2022-06-21T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2023-04-03T22:00:00.000+00:00", number: "2", summary: "Neue Updates von XEROX aufgenommen", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Xerox FreeFlow Print Server 9", product: { name: "Xerox FreeFlow Print Server 9", product_id: "T002977", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:9", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server v9", product: { name: "Xerox FreeFlow Print Server v9", product_id: "T015632", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:v9", }, }, }, ], category: "product_name", name: "FreeFlow Print Server", }, ], category: "vendor", name: "Xerox", }, ], }, vulnerabilities: [ { cve: "CVE-2016-2124", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2016-2124", }, { cve: "CVE-2019-14822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2019-14822", }, { cve: "CVE-2019-19906", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2019-19906", }, { cve: "CVE-2020-15250", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-15250", }, { cve: "CVE-2020-17049", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-17049", }, { cve: "CVE-2020-25717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25717", }, { cve: "CVE-2020-25718", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25718", }, { cve: "CVE-2020-25719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25719", }, { cve: "CVE-2020-25721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25721", }, { cve: "CVE-2020-25722", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-25722", }, { cve: "CVE-2020-9484", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2020-9484", }, { cve: "CVE-2021-21707", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-21707", }, { cve: "CVE-2021-22926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-22926", }, { cve: "CVE-2021-23192", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-23192", }, { cve: "CVE-2021-27815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-27815", }, { cve: "CVE-2021-30846", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30846", }, { cve: "CVE-2021-30848", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30848", }, { cve: "CVE-2021-30849", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30849", }, { cve: "CVE-2021-30851", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30851", }, { cve: "CVE-2021-30858", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-30858", }, { cve: "CVE-2021-33430", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-33430", }, { cve: "CVE-2021-34141", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-34141", }, { cve: "CVE-2021-35604", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-35604", }, { cve: "CVE-2021-35624", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-35624", }, { cve: "CVE-2021-3572", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3572", }, { cve: "CVE-2021-3711", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3711", }, { cve: "CVE-2021-3733", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3733", }, { cve: "CVE-2021-3737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3737", }, { cve: "CVE-2021-3738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3738", }, { cve: "CVE-2021-3770", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3770", }, { cve: "CVE-2021-3778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3778", }, { cve: "CVE-2021-3796", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3796", }, { cve: "CVE-2021-38115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-38115", }, { cve: "CVE-2021-3872", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3872", }, { cve: "CVE-2021-3875", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3875", }, { cve: "CVE-2021-3903", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3903", }, { cve: "CVE-2021-39212", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39212", }, { cve: "CVE-2021-39272", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39272", }, { cve: "CVE-2021-3928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3928", }, { cve: "CVE-2021-3968", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3968", }, { cve: "CVE-2021-3973", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3973", }, { cve: "CVE-2021-3974", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3974", }, { cve: "CVE-2021-3984", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-3984", }, { cve: "CVE-2021-39920", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39920", }, { cve: "CVE-2021-39921", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39921", }, { cve: "CVE-2021-39922", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39922", }, { cve: "CVE-2021-39923", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39923", }, { cve: "CVE-2021-39924", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39924", }, { cve: "CVE-2021-39925", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39925", }, { cve: "CVE-2021-39926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39926", }, { cve: "CVE-2021-39928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39928", }, { cve: "CVE-2021-39929", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-39929", }, { cve: "CVE-2021-4008", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4008", }, { cve: "CVE-2021-4009", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4009", }, { cve: "CVE-2021-4010", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4010", }, { cve: "CVE-2021-4011", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4011", }, { cve: "CVE-2021-40145", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-40145", }, { cve: "CVE-2021-4019", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4019", }, { cve: "CVE-2021-4034", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4034", }, { cve: "CVE-2021-4069", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4069", }, { cve: "CVE-2021-40812", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-40812", }, { cve: "CVE-2021-41133", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41133", }, { cve: "CVE-2021-4140", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4140", }, { cve: "CVE-2021-41495", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41495", }, { cve: "CVE-2021-41496", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41496", }, { cve: "CVE-2021-4181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4181", }, { cve: "CVE-2021-41817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41817", }, { cve: "CVE-2021-41819", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-41819", }, { cve: "CVE-2021-4182", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4182", }, { cve: "CVE-2021-4183", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4183", }, { cve: "CVE-2021-4184", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4184", }, { cve: "CVE-2021-4185", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-4185", }, { cve: "CVE-2021-42717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-42717", }, { cve: "CVE-2021-42762", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-42762", }, { cve: "CVE-2021-43331", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43331", }, { cve: "CVE-2021-43332", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43332", }, { cve: "CVE-2021-43395", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43395", }, { cve: "CVE-2021-43527", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43527", }, { cve: "CVE-2021-43528", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43528", }, { cve: "CVE-2021-43536", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43536", }, { cve: "CVE-2021-43537", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43537", }, { cve: "CVE-2021-43538", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43538", }, { cve: "CVE-2021-43539", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43539", }, { cve: "CVE-2021-43541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43541", }, { cve: "CVE-2021-43542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43542", }, { cve: "CVE-2021-43543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43543", }, { cve: "CVE-2021-43545", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43545", }, { cve: "CVE-2021-43546", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43546", }, { cve: "CVE-2021-43566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43566", }, { cve: "CVE-2021-43818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-43818", }, { cve: "CVE-2021-44142", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44142", }, { cve: "CVE-2021-44224", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44224", }, { cve: "CVE-2021-44227", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44227", }, { cve: "CVE-2021-44420", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44420", }, { cve: "CVE-2021-44531", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44531", }, { cve: "CVE-2021-44532", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44532", }, { cve: "CVE-2021-44533", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44533", }, { cve: "CVE-2021-44540", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44540", }, { cve: "CVE-2021-44541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44541", }, { cve: "CVE-2021-44542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44542", }, { cve: "CVE-2021-44543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44543", }, { cve: "CVE-2021-44790", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-44790", }, { cve: "CVE-2021-45078", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45078", }, { cve: "CVE-2021-45115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45115", }, { cve: "CVE-2021-45116", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45116", }, { cve: "CVE-2021-45452", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45452", }, { cve: "CVE-2021-45960", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-45960", }, { cve: "CVE-2021-46143", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2021-46143", }, { cve: "CVE-2022-0336", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0336", }, { cve: "CVE-2022-0391", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0391", }, { cve: "CVE-2022-0566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0566", }, { cve: "CVE-2022-0581", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0581", }, { cve: "CVE-2022-0582", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0582", }, { cve: "CVE-2022-0583", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0583", }, { cve: "CVE-2022-0585", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0585", }, { cve: "CVE-2022-0586", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0586", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-21248", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21248", }, { cve: "CVE-2022-21263", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21263", }, { cve: "CVE-2022-21271", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21271", }, { cve: "CVE-2022-21282", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21282", }, { cve: "CVE-2022-21291", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21291", }, { cve: "CVE-2022-21293", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21293", }, { cve: "CVE-2022-21294", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21294", }, { cve: "CVE-2022-21296", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21296", }, { cve: "CVE-2022-21298", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21298", }, { cve: "CVE-2022-21299", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21299", }, { cve: "CVE-2022-21305", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21305", }, { cve: "CVE-2022-21340", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21340", }, { cve: "CVE-2022-21341", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21341", }, { cve: "CVE-2022-21349", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21349", }, { cve: "CVE-2022-21360", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21360", }, { cve: "CVE-2022-21365", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21365", }, { cve: "CVE-2022-21375", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21375", }, { cve: "CVE-2022-21384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21384", }, { cve: "CVE-2022-21416", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21416", }, { cve: "CVE-2022-21446", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21446", }, { cve: "CVE-2022-21461", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21461", }, { cve: "CVE-2022-21463", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21463", }, { cve: "CVE-2022-21493", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21493", }, { cve: "CVE-2022-21494", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21494", }, { cve: "CVE-2022-21712", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21712", }, { cve: "CVE-2022-21716", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21716", }, { cve: "CVE-2022-21824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-21824", }, { cve: "CVE-2022-22719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22719", }, { cve: "CVE-2022-22720", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22720", }, { cve: "CVE-2022-22721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22721", }, { cve: "CVE-2022-22737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22737", }, { cve: "CVE-2022-22738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22738", }, { cve: "CVE-2022-22739", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22739", }, { cve: "CVE-2022-22740", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22740", }, { cve: "CVE-2022-22741", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22741", }, { cve: "CVE-2022-22742", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22742", }, { cve: "CVE-2022-22743", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22743", }, { cve: "CVE-2022-22744", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22744", }, { cve: "CVE-2022-22745", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22745", }, { cve: "CVE-2022-22746", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22746", }, { cve: "CVE-2022-22747", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22747", }, { cve: "CVE-2022-22748", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22748", }, { cve: "CVE-2022-22751", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22751", }, { cve: "CVE-2022-22753", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22753", }, { cve: "CVE-2022-22754", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22754", }, { cve: "CVE-2022-22756", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22756", }, { cve: "CVE-2022-22759", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22759", }, { cve: "CVE-2022-22760", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22760", }, { cve: "CVE-2022-22761", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22761", }, { cve: "CVE-2022-22763", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22763", }, { cve: "CVE-2022-22764", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22764", }, { cve: "CVE-2022-22815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22816", }, { cve: "CVE-2022-22817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22817", }, { cve: "CVE-2022-22818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22818", }, { cve: "CVE-2022-22822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22822", }, { cve: "CVE-2022-22823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22823", }, { cve: "CVE-2022-22824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22824", }, { cve: "CVE-2022-22825", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22825", }, { cve: "CVE-2022-22826", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22826", }, { cve: "CVE-2022-22827", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-22827", }, { cve: "CVE-2022-23181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23181", }, { cve: "CVE-2022-23833", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23833", }, { cve: "CVE-2022-23852", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23852", }, { cve: "CVE-2022-23943", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23943", }, { cve: "CVE-2022-23990", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-23990", }, { cve: "CVE-2022-24407", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-24407", }, { cve: "CVE-2022-25235", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25235", }, { cve: "CVE-2022-25236", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25236", }, { cve: "CVE-2022-25313", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25313", }, { cve: "CVE-2022-25314", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25314", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-26381", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26381", }, { cve: "CVE-2022-26383", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26383", }, { cve: "CVE-2022-26384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26384", }, { cve: "CVE-2022-26386", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26386", }, { cve: "CVE-2022-26387", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26387", }, { cve: "CVE-2022-26485", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26485", }, { cve: "CVE-2022-26486", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen, die im Zusammenhang mit der Solaris Betriebssystem Plattform stehen. Ein Angreifer kann diese Schwachstellen ausnutzen, um die Vertraulichkeit, Verfügbarkeit und Integrität zu gefährden.", }, ], product_status: { known_affected: [ "T015632", "T002977", ], }, release_date: "2022-06-21T22:00:00.000+00:00", title: "CVE-2022-26486", }, ], }
WID-SEC-W-2022-0302
Vulnerability from csaf_certbund
Published
2022-06-14 22:00
Modified
2023-04-03 22:00
Summary
Xerox FreeFlow Print Server: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Administratorrechten
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.
Angriff
Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.
Betroffene Betriebssysteme
- Sonstiges
{ document: { aggregate_severity: { text: "hoch", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "FreeFlow-Druckserver ist eine Druckserveranwendung für Xerox-Produktionsdrucker, die Flexibilität, umfangreiche Workflow-Optionen und eine Farbverwaltung bietet.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Xerox FreeFlow Print Server ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Sonstiges", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2022-0302 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2022/wid-sec-w-2022-0302.json", }, { category: "self", summary: "WID-SEC-2022-0302 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2022-0302", }, { category: "external", summary: "XEROX Security Advisory XRX23-005 vom 2023-04-04", url: "https://security.business.xerox.com/wp-content/uploads/2023/04/Xerox-Security-Bulletin-XRX23-005-Xerox%25C2%25AE-FreeFlow%25C2%25AE-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-015", url: "https://security.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-015-FreeFlow-Print-Server-v7.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-013 vom 2022-06-14", url: "https://securitydocs.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-013-FreeFlow-Print-Server-v9.pdf", }, { category: "external", summary: "Xerox Security Bulletin XRX22-012 vom 2022-06-14", url: "https://securitydocs.business.xerox.com/wp-content/uploads/2022/06/Xerox-Security-Bulletin-XRX22-012-FreeFlow-Printer.pdf", }, ], source_lang: "en-US", title: "Xerox FreeFlow Print Server: Mehrere Schwachstellen ermöglichen Ausführen von beliebigem Programmcode mit Administratorrechten", tracking: { current_release_date: "2023-04-03T22:00:00.000+00:00", generator: { date: "2024-08-15T17:27:55.136+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2022-0302", initial_release_date: "2022-06-14T22:00:00.000+00:00", revision_history: [ { date: "2022-06-14T22:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2022-06-21T22:00:00.000+00:00", number: "2", summary: "Neue Updates von XEROX aufgenommen", }, { date: "2023-04-03T22:00:00.000+00:00", number: "3", summary: "Neue Updates von XEROX aufgenommen", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Xerox FreeFlow Print Server 7", product: { name: "Xerox FreeFlow Print Server 7", product_id: "T000872", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:7", }, }, }, { category: "product_name", name: "Xerox FreeFlow Print Server 9", product: { name: "Xerox FreeFlow Print Server 9", product_id: "T002977", product_identification_helper: { cpe: "cpe:/a:xerox:freeflow_print_server:9", }, }, }, ], category: "product_name", name: "FreeFlow Print Server", }, ], category: "vendor", name: "Xerox", }, ], }, vulnerabilities: [ { cve: "CVE-2016-2124", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2016-2124", }, { cve: "CVE-2019-14822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2019-14822", }, { cve: "CVE-2019-19906", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2019-19906", }, { cve: "CVE-2020-15250", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-15250", }, { cve: "CVE-2020-17049", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-17049", }, { cve: "CVE-2020-25717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25717", }, { cve: "CVE-2020-25718", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25718", }, { cve: "CVE-2020-25719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25719", }, { cve: "CVE-2020-25721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25721", }, { cve: "CVE-2020-25722", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-25722", }, { cve: "CVE-2020-9484", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2020-9484", }, { cve: "CVE-2021-21707", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-21707", }, { cve: "CVE-2021-22926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-22926", }, { cve: "CVE-2021-23192", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-23192", }, { cve: "CVE-2021-27815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-27815", }, { cve: "CVE-2021-30846", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30846", }, { cve: "CVE-2021-30848", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30848", }, { cve: "CVE-2021-30849", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30849", }, { cve: "CVE-2021-30851", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30851", }, { cve: "CVE-2021-30858", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-30858", }, { cve: "CVE-2021-33430", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-33430", }, { cve: "CVE-2021-34141", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-34141", }, { cve: "CVE-2021-35604", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-35604", }, { cve: "CVE-2021-35624", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-35624", }, { cve: "CVE-2021-3572", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3572", }, { cve: "CVE-2021-3711", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3711", }, { cve: "CVE-2021-3733", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3733", }, { cve: "CVE-2021-3737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3737", }, { cve: "CVE-2021-3738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3738", }, { cve: "CVE-2021-3770", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3770", }, { cve: "CVE-2021-3778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3778", }, { cve: "CVE-2021-3796", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3796", }, { cve: "CVE-2021-38115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-38115", }, { cve: "CVE-2021-3872", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3872", }, { cve: "CVE-2021-3875", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3875", }, { cve: "CVE-2021-3903", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3903", }, { cve: "CVE-2021-39212", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39212", }, { cve: "CVE-2021-39272", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39272", }, { cve: "CVE-2021-3928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3928", }, { cve: "CVE-2021-3968", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3968", }, { cve: "CVE-2021-3973", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3973", }, { cve: "CVE-2021-3974", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3974", }, { cve: "CVE-2021-3984", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-3984", }, { cve: "CVE-2021-39920", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39920", }, { cve: "CVE-2021-39921", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39921", }, { cve: "CVE-2021-39922", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39922", }, { cve: "CVE-2021-39923", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39923", }, { cve: "CVE-2021-39924", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39924", }, { cve: "CVE-2021-39925", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39925", }, { cve: "CVE-2021-39926", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39926", }, { cve: "CVE-2021-39928", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39928", }, { cve: "CVE-2021-39929", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-39929", }, { cve: "CVE-2021-4008", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4008", }, { cve: "CVE-2021-4009", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4009", }, { cve: "CVE-2021-4010", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4010", }, { cve: "CVE-2021-4011", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4011", }, { cve: "CVE-2021-40145", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-40145", }, { cve: "CVE-2021-4019", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4019", }, { cve: "CVE-2021-4034", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4034", }, { cve: "CVE-2021-4069", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4069", }, { cve: "CVE-2021-40812", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-40812", }, { cve: "CVE-2021-41133", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41133", }, { cve: "CVE-2021-4140", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4140", }, { cve: "CVE-2021-41495", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41495", }, { cve: "CVE-2021-41496", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41496", }, { cve: "CVE-2021-4160", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4160", }, { cve: "CVE-2021-4181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4181", }, { cve: "CVE-2021-41817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41817", }, { cve: "CVE-2021-41819", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-41819", }, { cve: "CVE-2021-4182", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4182", }, { cve: "CVE-2021-4183", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4183", }, { cve: "CVE-2021-4184", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4184", }, { cve: "CVE-2021-4185", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-4185", }, { cve: "CVE-2021-42717", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-42717", }, { cve: "CVE-2021-42762", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-42762", }, { cve: "CVE-2021-43331", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43331", }, { cve: "CVE-2021-43332", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43332", }, { cve: "CVE-2021-43395", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43395", }, { cve: "CVE-2021-43527", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43527", }, { cve: "CVE-2021-43528", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43528", }, { cve: "CVE-2021-43536", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43536", }, { cve: "CVE-2021-43537", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43537", }, { cve: "CVE-2021-43538", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43538", }, { cve: "CVE-2021-43539", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43539", }, { cve: "CVE-2021-43541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43541", }, { cve: "CVE-2021-43542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43542", }, { cve: "CVE-2021-43543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43543", }, { cve: "CVE-2021-43545", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43545", }, { cve: "CVE-2021-43546", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43546", }, { cve: "CVE-2021-43566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43566", }, { cve: "CVE-2021-43818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-43818", }, { cve: "CVE-2021-44142", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44142", }, { cve: "CVE-2021-44224", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44224", }, { cve: "CVE-2021-44227", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44227", }, { cve: "CVE-2021-44420", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44420", }, { cve: "CVE-2021-44531", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44531", }, { cve: "CVE-2021-44532", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44532", }, { cve: "CVE-2021-44533", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44533", }, { cve: "CVE-2021-44540", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44540", }, { cve: "CVE-2021-44541", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44541", }, { cve: "CVE-2021-44542", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44542", }, { cve: "CVE-2021-44543", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44543", }, { cve: "CVE-2021-44790", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-44790", }, { cve: "CVE-2021-45078", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45078", }, { cve: "CVE-2021-45115", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45115", }, { cve: "CVE-2021-45116", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45116", }, { cve: "CVE-2021-45452", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45452", }, { cve: "CVE-2021-45960", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-45960", }, { cve: "CVE-2021-46143", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2021-46143", }, { cve: "CVE-2022-0336", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0336", }, { cve: "CVE-2022-0391", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0391", }, { cve: "CVE-2022-0566", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0566", }, { cve: "CVE-2022-0581", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0581", }, { cve: "CVE-2022-0582", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0582", }, { cve: "CVE-2022-0583", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0583", }, { cve: "CVE-2022-0585", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0585", }, { cve: "CVE-2022-0586", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0586", }, { cve: "CVE-2022-0778", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-0778", }, { cve: "CVE-2022-21248", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21248", }, { cve: "CVE-2022-21263", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21263", }, { cve: "CVE-2022-21271", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21271", }, { cve: "CVE-2022-21282", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21282", }, { cve: "CVE-2022-21291", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21291", }, { cve: "CVE-2022-21293", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21293", }, { cve: "CVE-2022-21294", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21294", }, { cve: "CVE-2022-21296", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21296", }, { cve: "CVE-2022-21298", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21298", }, { cve: "CVE-2022-21299", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21299", }, { cve: "CVE-2022-21305", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21305", }, { cve: "CVE-2022-21340", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21340", }, { cve: "CVE-2022-21341", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21341", }, { cve: "CVE-2022-21349", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21349", }, { cve: "CVE-2022-21360", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21360", }, { cve: "CVE-2022-21365", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21365", }, { cve: "CVE-2022-21375", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21375", }, { cve: "CVE-2022-21384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21384", }, { cve: "CVE-2022-21416", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21416", }, { cve: "CVE-2022-21446", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21446", }, { cve: "CVE-2022-21461", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21461", }, { cve: "CVE-2022-21463", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21463", }, { cve: "CVE-2022-21493", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21493", }, { cve: "CVE-2022-21494", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21494", }, { cve: "CVE-2022-21712", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21712", }, { cve: "CVE-2022-21716", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21716", }, { cve: "CVE-2022-21824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-21824", }, { cve: "CVE-2022-22719", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22719", }, { cve: "CVE-2022-22720", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22720", }, { cve: "CVE-2022-22721", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22721", }, { cve: "CVE-2022-22737", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22737", }, { cve: "CVE-2022-22738", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22738", }, { cve: "CVE-2022-22739", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22739", }, { cve: "CVE-2022-22740", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22740", }, { cve: "CVE-2022-22741", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22741", }, { cve: "CVE-2022-22742", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22742", }, { cve: "CVE-2022-22743", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22743", }, { cve: "CVE-2022-22744", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22744", }, { cve: "CVE-2022-22745", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22745", }, { cve: "CVE-2022-22746", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22746", }, { cve: "CVE-2022-22747", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22747", }, { cve: "CVE-2022-22748", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22748", }, { cve: "CVE-2022-22751", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22751", }, { cve: "CVE-2022-22753", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22753", }, { cve: "CVE-2022-22754", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22754", }, { cve: "CVE-2022-22756", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22756", }, { cve: "CVE-2022-22759", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22759", }, { cve: "CVE-2022-22760", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22760", }, { cve: "CVE-2022-22761", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22761", }, { cve: "CVE-2022-22763", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22763", }, { cve: "CVE-2022-22764", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22764", }, { cve: "CVE-2022-22815", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22815", }, { cve: "CVE-2022-22816", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22816", }, { cve: "CVE-2022-22817", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22817", }, { cve: "CVE-2022-22818", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22818", }, { cve: "CVE-2022-22822", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22822", }, { cve: "CVE-2022-22823", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22823", }, { cve: "CVE-2022-22824", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22824", }, { cve: "CVE-2022-22825", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22825", }, { cve: "CVE-2022-22826", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22826", }, { cve: "CVE-2022-22827", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-22827", }, { cve: "CVE-2022-23181", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23181", }, { cve: "CVE-2022-23833", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23833", }, { cve: "CVE-2022-23852", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23852", }, { cve: "CVE-2022-23943", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23943", }, { cve: "CVE-2022-23990", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-23990", }, { cve: "CVE-2022-24407", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-24407", }, { cve: "CVE-2022-25235", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25235", }, { cve: "CVE-2022-25236", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25236", }, { cve: "CVE-2022-25313", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25313", }, { cve: "CVE-2022-25314", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25314", }, { cve: "CVE-2022-25315", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-25315", }, { cve: "CVE-2022-26381", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26381", }, { cve: "CVE-2022-26383", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26383", }, { cve: "CVE-2022-26384", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26384", }, { cve: "CVE-2022-26386", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26386", }, { cve: "CVE-2022-26387", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26387", }, { cve: "CVE-2022-26485", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26485", }, { cve: "CVE-2022-26486", notes: [ { category: "description", text: "In Xerox FreeFlow Print Server existieren mehrere Schwachstellen. Ein entfernter Angreifer kann diese Schwachstellen ausnutzen, um beliebigen Programmcode auszuführen, einen Cross-Site-Scripting-Angriff durchzuführen, Informationen offenzulegen, einen Denial-of-Service-Zustand zu verursachen oder Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "T000872", "T002977", ], }, release_date: "2022-06-14T22:00:00.000+00:00", title: "CVE-2022-26486", }, ], }
fkie_cve-2022-22816
Vulnerability from fkie_nvd
Published
2022-01-10 14:12
Modified
2024-11-21 06:47
Severity ?
Summary
path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| python | pillow | * | |
| debian | debian_linux | 9.0 | |
| debian | debian_linux | 10.0 | |
| debian | debian_linux | 11.0 |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*", matchCriteriaId: "230E2D17-CE9C-44C0-8EE5-B025D2C147EF", versionEndExcluding: "9.0.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", matchCriteriaId: "DEECE5FC-CACF-4496-A3E7-164736409252", vulnerable: true, }, { criteria: "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", matchCriteriaId: "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73", vulnerable: true, }, { criteria: "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", matchCriteriaId: "FA6FEEC2-9F11-4643-8827-749718254FED", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", }, { lang: "es", value: "La función path_getbbox en el archivo path.c en Pillow versiones anteriores a 9.0.0, presenta una lectura excesiva del buffer durante la inicialización de ImagePath.Path", }, ], id: "CVE-2022-22816", lastModified: "2024-11-21T06:47:30.333", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "MEDIUM", cvssData: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 6.4, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 2.5, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2022-01-10T14:12:54.813", references: [ { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { source: "cve@mitre.org", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { source: "cve@mitre.org", tags: [ "Release Notes", "Vendor Advisory", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202211-10", }, { source: "cve@mitre.org", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2022/dsa-5053", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Release Notes", "Vendor Advisory", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202211-10", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2022/dsa-5053", }, ], sourceIdentifier: "cve@mitre.org", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-125", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
pysec-2022-9
Vulnerability from pysec
Published
2022-01-10 14:12
Modified
2022-01-24 23:48
Details
path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.
Impacted products
| Name | purl |
|---|---|
| pillow | pkg:pypi/pillow |
Aliases
{ affected: [ { package: { ecosystem: "PyPI", name: "pillow", purl: "pkg:pypi/pillow", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "9.0.0", }, ], type: "ECOSYSTEM", }, ], versions: [ "1.0", "1.1", "1.2", "1.3", "1.4", "1.5", "1.6", "1.7.0", "1.7.1", "1.7.2", "1.7.3", "1.7.4", "1.7.5", "1.7.6", "1.7.7", "1.7.8", "2.0.0", "2.1.0", "2.2.0", "2.2.1", "2.2.2", "2.3.0", "2.3.1", "2.3.2", "2.4.0", "2.5.0", "2.5.1", "2.5.2", "2.5.3", "2.6.0", "2.6.1", "2.6.2", "2.7.0", "2.8.0", "2.8.1", "2.8.2", "2.9.0", "3.0.0", "3.1.0", "3.1.0.rc1", "3.1.0rc1", "3.1.1", "3.1.2", "3.2.0", "3.3.0", "3.3.1", "3.3.2", "3.3.3", "3.4.0", "3.4.1", "3.4.2", "4.0.0", "4.1.0", "4.1.1", "4.2.0", "4.2.1", "4.3.0", "5.0.0", "5.1.0", "5.2.0", "5.3.0", "5.4.0", "5.4.0.dev0", "5.4.1", "6.0.0", "6.1.0", "6.2.0", "6.2.1", "6.2.2", "7.0.0", "7.1.0", "7.1.1", "7.1.2", "7.2.0", "8.0.0", "8.0.1", "8.1.0", "8.1.1", "8.1.2", "8.2.0", "8.3.0", "8.3.1", "8.3.2", "8.4.0", ], }, ], aliases: [ "CVE-2022-22816", "GHSA-xrcv-f9gm-v42c", ], details: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", id: "PYSEC-2022-9", modified: "2022-01-24T23:48:19.735368Z", published: "2022-01-10T14:12:00Z", references: [ { type: "WEB", url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { type: "WEB", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { type: "WEB", url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { type: "ADVISORY", url: "https://github.com/advisories/GHSA-xrcv-f9gm-v42c", }, ], }
gsd-2022-22816
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.
Aliases
Aliases
{ GSD: { alias: "CVE-2022-22816", description: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", id: "GSD-2022-22816", references: [ "https://www.suse.com/security/cve/CVE-2022-22816.html", "https://www.debian.org/security/2022/dsa-5053", "https://access.redhat.com/errata/RHSA-2022:0669", "https://access.redhat.com/errata/RHSA-2022:0667", "https://access.redhat.com/errata/RHSA-2022:0665", "https://access.redhat.com/errata/RHSA-2022:0643", "https://access.redhat.com/errata/RHSA-2022:0609", "https://ubuntu.com/security/CVE-2022-22816", "https://advisories.mageia.org/CVE-2022-22816.html", "https://linux.oracle.com/cve/CVE-2022-22816.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2022-22816", ], details: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", id: "GSD-2022-22816", modified: "2023-12-13T01:19:29.964538Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2022-22816", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", refsource: "MISC", url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { name: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", refsource: "MISC", url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { name: "[debian-lts-announce] 20220123 [SECURITY] [DLA 2893-1] pillow security update", refsource: "MLIST", url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { name: "DSA-5053", refsource: "DEBIAN", url: "https://www.debian.org/security/2022/dsa-5053", }, { name: "GLSA-202211-10", refsource: "GENTOO", url: "https://security.gentoo.org/glsa/202211-10", }, ], }, }, "gitlab.com": { advisories: [ { affected_range: "<9.0.0", affected_versions: "All versions before 9.0.0", cvss_v2: "AV:N/AC:L/Au:N/C:N/I:P/A:P", cvss_v3: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", cwe_ids: [ "CWE-1035", "CWE-125", "CWE-937", ], date: "2023-01-31", description: "`path_getbbox` in `path.c` in Pillow has a buffer over-read during initialization of `ImagePath.Path`.", fixed_versions: [ "9.0.0", ], identifier: "CVE-2022-22816", identifiers: [ "CVE-2022-22816", ], not_impacted: "All versions starting from 9.0.0", package_slug: "pypi/Pillow", pubdate: "2022-01-10", solution: "Upgrade to version 9.0.0 or above.", title: "Out-of-bounds Read", urls: [ "https://nvd.nist.gov/vuln/detail/CVE-2022-22816", "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", ], uuid: "0d296751-7163-4b9b-ae7e-6d8bd543dd92", }, ], }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:python:pillow:*:*:*:*:*:*:*:*", cpe_name: [], versionEndExcluding: "9.0.0", vulnerable: true, }, ], operator: "OR", }, { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, { cpe23Uri: "cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*", cpe_name: [], vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "cve@mitre.org", ID: "CVE-2022-22816", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "path_getbbox in path.c in Pillow before 9.0.0 has a buffer over-read during initialization of ImagePath.Path.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-125", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", refsource: "MISC", tags: [ "Third Party Advisory", ], url: "https://github.com/python-pillow/Pillow/blob/c5d9223a8b5e9295d15b5a9b1ef1dae44c8499f3/src/path.c#L331", }, { name: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", refsource: "MISC", tags: [ "Release Notes", "Vendor Advisory", ], url: "https://pillow.readthedocs.io/en/stable/releasenotes/9.0.0.html#fixed-imagepath-path-array-handling", }, { name: "[debian-lts-announce] 20220123 [SECURITY] [DLA 2893-1] pillow security update", refsource: "MLIST", tags: [ "Mailing List", "Third Party Advisory", ], url: "https://lists.debian.org/debian-lts-announce/2022/01/msg00018.html", }, { name: "DSA-5053", refsource: "DEBIAN", tags: [ "Third Party Advisory", ], url: "https://www.debian.org/security/2022/dsa-5053", }, { name: "GLSA-202211-10", refsource: "GENTOO", tags: [ "Third Party Advisory", ], url: "https://security.gentoo.org/glsa/202211-10", }, ], }, }, impact: { baseMetricV2: { acInsufInfo: false, cvssV2: { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", availabilityImpact: "PARTIAL", baseScore: 6.4, confidentialityImpact: "NONE", integrityImpact: "PARTIAL", vectorString: "AV:N/AC:L/Au:N/C:N/I:P/A:P", version: "2.0", }, exploitabilityScore: 10, impactScore: 4.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, severity: "MEDIUM", userInteractionRequired: false, }, baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 2.5, }, }, lastModifiedDate: "2023-01-31T17:41Z", publishedDate: "2022-01-10T14:12Z", }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.