cvelistv5 - cve-2022-24439

CVE-2022-24439 (GCVE-0-2022-24439)

Vulnerability from cvelistv5 – Published: 2022-12-12 01:49 – Updated: 2025-11-03 21:46

Summary

All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.

Severity ?

8.1 (High)


                        
                          CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

Remote Code Execution (RCE)

Assigner

snyk

References

URL

	Vendor	Product	Version
	n/a	GitPython	Affected: 0 , < unspecified (custom)

GHSA-HCPJ-QP55-GFPH

Vulnerability from github – Published: 2022-12-06 06:30 – Updated: 2025-11-04 16:40

Summary

GitPython vulnerable to Remote Code Execution due to improper user input validation

Details

Severity ?

8.1 (High)


                  
                    CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

9.2 (Critical)


                  
                    CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [
    {
      "database_specific": {
        "last_known_affected_version_range": "\u003c= 3.1.29"
      },
      "package": {
        "ecosystem": "PyPI",
        "name": "GitPython"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.1.30"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "aliases": [
    "CVE-2022-24439"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20",
      "CWE-94"
    ],
    "github_reviewed": true,
    "github_reviewed_at": "2022-12-06T14:33:52Z",
    "nvd_published_at": "2022-12-06T05:15:00Z",
    "severity": "CRITICAL"
  },
  "details": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
  "id": "GHSA-hcpj-qp55-gfph",
  "modified": "2025-11-04T16:40:11Z",
  "published": "2022-12-06T06:30:17Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439"
    },
    {
      "type": "WEB",
      "url": "https://github.com/gitpython-developers/GitPython/issues/1515"
    },
    {
      "type": "WEB",
      "url": "https://github.com/gitpython-developers/GitPython/commit/2625ed9fc074091c531c27ffcba7902771130261"
    },
    {
      "type": "WEB",
      "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
    },
    {
      "type": "WEB",
      "url": "https://security.gentoo.org/glsa/202311-01"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html"
    },
    {
      "type": "WEB",
      "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html"
    },
    {
      "type": "WEB",
      "url": "https://github.com/pypa/advisory-database/tree/main/vulns/gitpython/PYSEC-2022-42992.yaml"
    },
    {
      "type": "WEB",
      "url": "https://github.com/gitpython-developers/GitPython/releases/tag/3.1.30"
    },
    {
      "type": "WEB",
      "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249"
    },
    {
      "type": "WEB",
      "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py#L1249"
    },
    {
      "type": "PACKAGE",
      "url": "https://github.com/gitpython-developers/GitPython"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
      "type": "CVSS_V4"
    }
  ],
  "summary": "GitPython vulnerable to Remote Code Execution due to improper user input validation"
}

FKIE_CVE-2022-24439

Vulnerability from fkie_nvd - Published: 2022-12-06 05:15 - Updated: 2025-11-03 22:15

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
report@snyk.io	https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249	Broken Link
report@snyk.io	https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html	Mailing List, Third Party Advisory
report@snyk.io	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/	Mailing List, Third Party Advisory
report@snyk.io	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/	Mailing List, Third Party Advisory
report@snyk.io	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/	Mailing List, Third Party Advisory
report@snyk.io	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/	Mailing List, Third Party Advisory
report@snyk.io	https://security.gentoo.org/glsa/202311-01	Third Party Advisory
report@snyk.io	https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858	Exploit, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249	Broken Link
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/	Mailing List, Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.gentoo.org/glsa/202311-01	Third Party Advisory
af854a3a-2127-422b-91ae-364da2661108	https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858	Exploit, Third Party Advisory

Impacted products

Vendor	Product	Version
gitpython_project	gitpython	*
fedoraproject	fedora	36
fedoraproject	fedora	37
fedoraproject	fedora	38
debian	debian_linux	10.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:gitpython_project:gitpython:*:*:*:*:*:python:*:*",
              "matchCriteriaId": "449620FB-DFA3-4ECB-9C7E-817011E15449",
              "versionEndExcluding": "3.1.30",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
              "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
              "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
              "matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments."
    },
    {
      "lang": "es",
      "value": "Todas las versiones del paquete gitpython son vulnerables a la ejecuci\u00f3n remota de c\u00f3digo (RCE) debido a una validaci\u00f3n incorrecta de la entrada del usuario, lo que hace posible inyectar una URL remota creada con fines malintencionados en el comando de clonaci\u00f3n. Es posible explotar esta vulnerabilidad porque la librer\u00eda realiza llamadas externas a git sin una sanitizaci\u00f3n suficiente de los argumentos de entrada."
    }
  ],
  "id": "CVE-2022-24439",
  "lastModified": "2025-11-03T22:15:57.110",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "report@snyk.io",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-12-06T05:15:11.420",
  "references": [
    {
      "source": "report@snyk.io",
      "tags": [
        "Broken Link"
      ],
      "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.gentoo.org/glsa/202311-01"
    },
    {
      "source": "report@snyk.io",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Broken Link"
      ],
      "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://lists.debian.org/debian-lts-announce/2024/10/msg00030.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Mailing List",
        "Third Party Advisory"
      ],
      "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory"
      ],
      "url": "https://security.gentoo.org/glsa/202311-01"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Third Party Advisory"
      ],
      "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
    }
  ],
  "sourceIdentifier": "report@snyk.io",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

OPENSUSE-SU-2024:12596-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

python310-GitPython-3.1.30.1672298042.141cd65-1.1 on GA media

Notes

Title of the patch

python310-GitPython-3.1.30.1672298042.141cd65-1.1 on GA media

Description of the patch

These are all security issues fixed in the python310-GitPython-3.1.30.1672298042.141cd65-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-12596

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "python310-GitPython-3.1.30.1672298042.141cd65-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the python310-GitPython-3.1.30.1672298042.141cd65-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-12596",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_12596-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-24439 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-24439/"
      }
    ],
    "title": "python310-GitPython-3.1.30.1672298042.141cd65-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:12596-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
                "product": {
                  "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
                  "product_id": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
                "product": {
                  "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
                  "product_id": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
                "product": {
                  "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
                  "product_id": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
                "product": {
                  "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
                  "product_id": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
                "product": {
                  "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
                  "product_id": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
                "product": {
                  "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
                  "product_id": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
                "product": {
                  "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
                  "product_id": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
                "product": {
                  "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
                  "product_id": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
                "product": {
                  "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
                  "product_id": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
                "product": {
                  "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
                  "product_id": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
                "product": {
                  "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
                  "product_id": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
                "product": {
                  "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
                  "product_id": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64"
        },
        "product_reference": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le"
        },
        "product_reference": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x"
        },
        "product_reference": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
        },
        "product_reference": "python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64"
        },
        "product_reference": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le"
        },
        "product_reference": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x"
        },
        "product_reference": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
        },
        "product_reference": "python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64"
        },
        "product_reference": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le"
        },
        "product_reference": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x"
        },
        "product_reference": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
        },
        "product_reference": "python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-24439",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-24439"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
          "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
          "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
          "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
          "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
          "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
          "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
          "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
          "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
          "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
          "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
          "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-24439",
          "url": "https://www.suse.com/security/cve/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206099 for CVE-2022-24439",
          "url": "https://bugzilla.suse.com/1206099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214174 for CVE-2022-24439",
          "url": "https://bugzilla.suse.com/1214174"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
            "openSUSE Tumbleweed:python310-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
            "openSUSE Tumbleweed:python38-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.aarch64",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.ppc64le",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.s390x",
            "openSUSE Tumbleweed:python39-GitPython-3.1.30.1672298042.141cd65-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-24439"
    }
  ]
}

OPENSUSE-SU-2025:14858-1

Vulnerability from csaf_opensuse - Published: 2025-03-06 00:00 - Updated: 2025-03-06 00:00

Summary

python311-GitPython-3.1.44-1.1 on GA media

Notes

Title of the patch

python311-GitPython-3.1.44-1.1 on GA media

Description of the patch

These are all security issues fixed in the python311-GitPython-3.1.44-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2025-14858

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "python311-GitPython-3.1.44-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the python311-GitPython-3.1.44-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2025-14858",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_14858-1.json"
      },
      {
        "category": "self",
        "summary": "URL for openSUSE-SU-2025:14858-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BL425OEFL7RRAGOKGQULOL6EAUGVFV3O/"
      },
      {
        "category": "self",
        "summary": "E-Mail link for openSUSE-SU-2025:14858-1",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BL425OEFL7RRAGOKGQULOL6EAUGVFV3O/"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-24439 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-24439/"
      }
    ],
    "title": "python311-GitPython-3.1.44-1.1 on GA media",
    "tracking": {
      "current_release_date": "2025-03-06T00:00:00Z",
      "generator": {
        "date": "2025-03-06T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2025:14858-1",
      "initial_release_date": "2025-03-06T00:00:00Z",
      "revision_history": [
        {
          "date": "2025-03-06T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python311-GitPython-3.1.44-1.1.aarch64",
                "product": {
                  "name": "python311-GitPython-3.1.44-1.1.aarch64",
                  "product_id": "python311-GitPython-3.1.44-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "python312-GitPython-3.1.44-1.1.aarch64",
                "product": {
                  "name": "python312-GitPython-3.1.44-1.1.aarch64",
                  "product_id": "python312-GitPython-3.1.44-1.1.aarch64"
                }
              },
              {
                "category": "product_version",
                "name": "python313-GitPython-3.1.44-1.1.aarch64",
                "product": {
                  "name": "python313-GitPython-3.1.44-1.1.aarch64",
                  "product_id": "python313-GitPython-3.1.44-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python311-GitPython-3.1.44-1.1.ppc64le",
                "product": {
                  "name": "python311-GitPython-3.1.44-1.1.ppc64le",
                  "product_id": "python311-GitPython-3.1.44-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "python312-GitPython-3.1.44-1.1.ppc64le",
                "product": {
                  "name": "python312-GitPython-3.1.44-1.1.ppc64le",
                  "product_id": "python312-GitPython-3.1.44-1.1.ppc64le"
                }
              },
              {
                "category": "product_version",
                "name": "python313-GitPython-3.1.44-1.1.ppc64le",
                "product": {
                  "name": "python313-GitPython-3.1.44-1.1.ppc64le",
                  "product_id": "python313-GitPython-3.1.44-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python311-GitPython-3.1.44-1.1.s390x",
                "product": {
                  "name": "python311-GitPython-3.1.44-1.1.s390x",
                  "product_id": "python311-GitPython-3.1.44-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "python312-GitPython-3.1.44-1.1.s390x",
                "product": {
                  "name": "python312-GitPython-3.1.44-1.1.s390x",
                  "product_id": "python312-GitPython-3.1.44-1.1.s390x"
                }
              },
              {
                "category": "product_version",
                "name": "python313-GitPython-3.1.44-1.1.s390x",
                "product": {
                  "name": "python313-GitPython-3.1.44-1.1.s390x",
                  "product_id": "python313-GitPython-3.1.44-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python311-GitPython-3.1.44-1.1.x86_64",
                "product": {
                  "name": "python311-GitPython-3.1.44-1.1.x86_64",
                  "product_id": "python311-GitPython-3.1.44-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "python312-GitPython-3.1.44-1.1.x86_64",
                "product": {
                  "name": "python312-GitPython-3.1.44-1.1.x86_64",
                  "product_id": "python312-GitPython-3.1.44-1.1.x86_64"
                }
              },
              {
                "category": "product_version",
                "name": "python313-GitPython-3.1.44-1.1.x86_64",
                "product": {
                  "name": "python313-GitPython-3.1.44-1.1.x86_64",
                  "product_id": "python313-GitPython-3.1.44-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python311-GitPython-3.1.44-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.aarch64"
        },
        "product_reference": "python311-GitPython-3.1.44-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python311-GitPython-3.1.44-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.ppc64le"
        },
        "product_reference": "python311-GitPython-3.1.44-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python311-GitPython-3.1.44-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.s390x"
        },
        "product_reference": "python311-GitPython-3.1.44-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python311-GitPython-3.1.44-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.x86_64"
        },
        "product_reference": "python311-GitPython-3.1.44-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python312-GitPython-3.1.44-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.aarch64"
        },
        "product_reference": "python312-GitPython-3.1.44-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python312-GitPython-3.1.44-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.ppc64le"
        },
        "product_reference": "python312-GitPython-3.1.44-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python312-GitPython-3.1.44-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.s390x"
        },
        "product_reference": "python312-GitPython-3.1.44-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python312-GitPython-3.1.44-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.x86_64"
        },
        "product_reference": "python312-GitPython-3.1.44-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python313-GitPython-3.1.44-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.aarch64"
        },
        "product_reference": "python313-GitPython-3.1.44-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python313-GitPython-3.1.44-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.ppc64le"
        },
        "product_reference": "python313-GitPython-3.1.44-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python313-GitPython-3.1.44-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.s390x"
        },
        "product_reference": "python313-GitPython-3.1.44-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python313-GitPython-3.1.44-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.x86_64"
        },
        "product_reference": "python313-GitPython-3.1.44-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-24439",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-24439"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.aarch64",
          "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.ppc64le",
          "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.s390x",
          "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.x86_64",
          "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.aarch64",
          "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.ppc64le",
          "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.s390x",
          "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.x86_64",
          "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.aarch64",
          "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.ppc64le",
          "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.s390x",
          "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-24439",
          "url": "https://www.suse.com/security/cve/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206099 for CVE-2022-24439",
          "url": "https://bugzilla.suse.com/1206099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214174 for CVE-2022-24439",
          "url": "https://bugzilla.suse.com/1214174"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.aarch64",
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.ppc64le",
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.s390x",
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.x86_64",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.aarch64",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.ppc64le",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.s390x",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.x86_64",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.aarch64",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.ppc64le",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.s390x",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.aarch64",
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.ppc64le",
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.s390x",
            "openSUSE Tumbleweed:python311-GitPython-3.1.44-1.1.x86_64",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.aarch64",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.ppc64le",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.s390x",
            "openSUSE Tumbleweed:python312-GitPython-3.1.44-1.1.x86_64",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.aarch64",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.ppc64le",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.s390x",
            "openSUSE Tumbleweed:python313-GitPython-3.1.44-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2025-03-06T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-24439"
    }
  ]
}

OPENSUSE-SU-2024:13510-1

Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00

Summary

python3-bandit-1.7.6-1.1 on GA media

Notes

Title of the patch

python3-bandit-1.7.6-1.1 on GA media

Description of the patch

These are all security issues fixed in the python3-bandit-1.7.6-1.1 package on the GA media of openSUSE Tumbleweed.

Patchnames

openSUSE-Tumbleweed-2024-13510

CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://www.suse.com/support/security/rating/",
      "text": "moderate"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright 2024 SUSE LLC. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "python3-bandit-1.7.6-1.1 on GA media",
        "title": "Title of the patch"
      },
      {
        "category": "description",
        "text": "These are all security issues fixed in the python3-bandit-1.7.6-1.1 package on the GA media of openSUSE Tumbleweed.",
        "title": "Description of the patch"
      },
      {
        "category": "details",
        "text": "openSUSE-Tumbleweed-2024-13510",
        "title": "Patchnames"
      },
      {
        "category": "legal_disclaimer",
        "text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
        "title": "Terms of use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://www.suse.com/support/security/contact/",
      "name": "SUSE Product Security Team",
      "namespace": "https://www.suse.com/"
    },
    "references": [
      {
        "category": "external",
        "summary": "SUSE ratings",
        "url": "https://www.suse.com/support/security/rating/"
      },
      {
        "category": "self",
        "summary": "URL of this CSAF notice",
        "url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13510-1.json"
      },
      {
        "category": "self",
        "summary": "SUSE CVE CVE-2022-24439 page",
        "url": "https://www.suse.com/security/cve/CVE-2022-24439/"
      }
    ],
    "title": "python3-bandit-1.7.6-1.1 on GA media",
    "tracking": {
      "current_release_date": "2024-06-15T00:00:00Z",
      "generator": {
        "date": "2024-06-15T00:00:00Z",
        "engine": {
          "name": "cve-database.git:bin/generate-csaf.pl",
          "version": "1"
        }
      },
      "id": "openSUSE-SU-2024:13510-1",
      "initial_release_date": "2024-06-15T00:00:00Z",
      "revision_history": [
        {
          "date": "2024-06-15T00:00:00Z",
          "number": "1",
          "summary": "Current version"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-bandit-1.7.6-1.1.aarch64",
                "product": {
                  "name": "python3-bandit-1.7.6-1.1.aarch64",
                  "product_id": "python3-bandit-1.7.6-1.1.aarch64"
                }
              }
            ],
            "category": "architecture",
            "name": "aarch64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-bandit-1.7.6-1.1.ppc64le",
                "product": {
                  "name": "python3-bandit-1.7.6-1.1.ppc64le",
                  "product_id": "python3-bandit-1.7.6-1.1.ppc64le"
                }
              }
            ],
            "category": "architecture",
            "name": "ppc64le"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-bandit-1.7.6-1.1.s390x",
                "product": {
                  "name": "python3-bandit-1.7.6-1.1.s390x",
                  "product_id": "python3-bandit-1.7.6-1.1.s390x"
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "python3-bandit-1.7.6-1.1.x86_64",
                "product": {
                  "name": "python3-bandit-1.7.6-1.1.x86_64",
                  "product_id": "python3-bandit-1.7.6-1.1.x86_64"
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "openSUSE Tumbleweed",
                "product": {
                  "name": "openSUSE Tumbleweed",
                  "product_id": "openSUSE Tumbleweed",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:opensuse:tumbleweed"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "SUSE Linux Enterprise"
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-bandit-1.7.6-1.1.aarch64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.aarch64"
        },
        "product_reference": "python3-bandit-1.7.6-1.1.aarch64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-bandit-1.7.6-1.1.ppc64le as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.ppc64le"
        },
        "product_reference": "python3-bandit-1.7.6-1.1.ppc64le",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-bandit-1.7.6-1.1.s390x as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.s390x"
        },
        "product_reference": "python3-bandit-1.7.6-1.1.s390x",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python3-bandit-1.7.6-1.1.x86_64 as component of openSUSE Tumbleweed",
          "product_id": "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.x86_64"
        },
        "product_reference": "python3-bandit-1.7.6-1.1.x86_64",
        "relates_to_product_reference": "openSUSE Tumbleweed"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2022-24439",
      "ids": [
        {
          "system_name": "SUSE CVE Page",
          "text": "https://www.suse.com/security/cve/CVE-2022-24439"
        }
      ],
      "notes": [
        {
          "category": "general",
          "text": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
          "title": "CVE description"
        }
      ],
      "product_status": {
        "recommended": [
          "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.aarch64",
          "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.ppc64le",
          "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.s390x",
          "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "external",
          "summary": "CVE-2022-24439",
          "url": "https://www.suse.com/security/cve/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1206099 for CVE-2022-24439",
          "url": "https://bugzilla.suse.com/1206099"
        },
        {
          "category": "external",
          "summary": "SUSE Bug 1214174 for CVE-2022-24439",
          "url": "https://bugzilla.suse.com/1214174"
        }
      ],
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
          "product_ids": [
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.aarch64",
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.ppc64le",
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.s390x",
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.aarch64",
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.ppc64le",
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.s390x",
            "openSUSE Tumbleweed:python3-bandit-1.7.6-1.1.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "date": "2024-06-15T00:00:00Z",
          "details": "important"
        }
      ],
      "title": "CVE-2022-24439"
    }
  ]
}

RHSA-2023_5931

Vulnerability from csaf_redhat - Published: 2023-10-19 13:15 - Updated: 2024-12-18 04:46

Summary

Red Hat Security Advisory: Satellite 6.13.5 Async Security Update

Notes

Topic

Updated Satellite 6.13 packages that fixes Important security bugs and several regular bugs are now available for Red Hat Satellite. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Details

Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments. Security fix(es): * Yggdrasil-worker-forwarder (gRPC): Rapid Reset Attack through HTTP/2 enabled web service which leads to DDoS attack (CVE-2023-44487 & CVE-2023-39325) A Red Hat Security Bulletin which addresses further details about this flaw is available in the References section. * Foreman: OS command injection via ct_command and fcct_command (CVE-2022-3874) * Foreman: Arbitrary code execution through yaml global parameters (CVE-2023-0462) * GitPython: Remote code execution and improper input validation vulnerability (CVE-2022-24439 & CVE-2023-40267) * Ruby-git & tfm-rubygem-git: Code injection vulnerability (CVE-2022-47318 & CVE-2022-46648) * Python-django: Multiple flaws (CVE-2023-31047 & CVE-2023-36053) * Puppet-agent (openssl): Multiple flaws (CVE-2022-1292 CVE-2022-2068) This update fixes the following bugs: 2238346 - Red Hat supported provisioning templates are not recognized by RH icon on the row for a given template 2238348 - when creating a backup on rhel7 and restoring on rhel8, the restore process will fail with permission issues 2238350 - Virtual machine goes in re-provisioning mode while registration host using Global registration template. 2238359 - Capsule redundantly synces *-Export-Library repos 2238361 - Can't update the redhat_repository_url without changing the cdn_configuration to custom_cdn 2238363 - katello-certs-check does not cause the installer to halt execution on failure 2238367 - Satellite Web UI >> Hosts >> All Hosts page loading slow even after power isn't selected from the new option "Manage columns". 2238369 - Content-export incremental with syncable format based does not include productid file into repodata directory 2238371 - SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t 2239041 - Reclaim space for repository fails with Cannot delete some instances of model 'Artifact' because they are referenced through protected foreign keys: 'ContentArtifact.artifact'." 2238353 - The "hammer export" command using single thread encryption causes a performance bottleneck. 2240781 - Remediation from CRC via Satellite shows "Failed" status even after successful remediation of Insights recommendations. 2241914 - "NoMethodError: undefined method `fact_values'" while trying to perform inventory upload Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Satellite 6.13 packages that fixes Important security bugs and several regular bugs are now available for Red Hat Satellite.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.\n\nSecurity fix(es):\n\n* Yggdrasil-worker-forwarder (gRPC): Rapid Reset Attack through HTTP/2 enabled web service which leads to DDoS attack (CVE-2023-44487 \u0026 CVE-2023-39325)\n\nA Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.\n\n* Foreman: OS command injection via ct_command and fcct_command (CVE-2022-3874)\n\n* Foreman: Arbitrary code execution through yaml global parameters (CVE-2023-0462)\n\n* GitPython: Remote code execution and improper input validation vulnerability (CVE-2022-24439 \u0026 CVE-2023-40267)\n\n* Ruby-git \u0026 tfm-rubygem-git: Code injection vulnerability (CVE-2022-47318 \u0026 CVE-2022-46648)\n\n* Python-django: Multiple flaws (CVE-2023-31047 \u0026 CVE-2023-36053)\n\n* Puppet-agent (openssl): Multiple flaws (CVE-2022-1292 CVE-2022-2068)\n\nThis update fixes the following bugs:\n\n2238346 - Red Hat supported provisioning templates are not recognized by RH icon on the row for a given template\n2238348 - when creating a backup on rhel7 and restoring on rhel8, the restore process will fail with permission issues\n2238350 - Virtual machine goes in re-provisioning mode while registration host using Global registration template.\n2238359 - Capsule redundantly synces *-Export-Library repos\n2238361 - Can\u0027t update the redhat_repository_url without changing the cdn_configuration to custom_cdn\n2238363 - katello-certs-check does not cause the installer to halt execution on failure\n2238367 - Satellite Web UI \u003e\u003e Hosts \u003e\u003e All Hosts page loading slow even after power isn\u0027t selected from the new option \"Manage columns\".\n2238369 - Content-export incremental with syncable format based does not include productid file into repodata directory\n2238371 - SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t\n2239041 - Reclaim space for repository fails with Cannot delete some instances of model \u0027Artifact\u0027 because they are referenced through protected foreign keys: \u0027ContentArtifact.artifact\u0027.\"\n2238353 - The \"hammer export\" command using single thread encryption causes a performance bottleneck.\n2240781 - Remediation from CRC via Satellite shows \"Failed\" status even after successful remediation of Insights recommendations. \n2241914 - \"NoMethodError: undefined method `fact_values\u0027\" while trying to perform inventory upload\n\nUsers of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2023:5931",
        "url": "https://access.redhat.com/errata/RHSA-2023:5931"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.13/html/upgrading_and_updating_red_hat_satellite/index",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.13/html/upgrading_and_updating_red_hat_satellite/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
        "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
      },
      {
        "category": "external",
        "summary": "2081494",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2081494"
      },
      {
        "category": "external",
        "summary": "2097310",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2097310"
      },
      {
        "category": "external",
        "summary": "2140577",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140577"
      },
      {
        "category": "external",
        "summary": "2151583",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151583"
      },
      {
        "category": "external",
        "summary": "2159672",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2159672"
      },
      {
        "category": "external",
        "summary": "2162970",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2162970"
      },
      {
        "category": "external",
        "summary": "2169385",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2169385"
      },
      {
        "category": "external",
        "summary": "2192565",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192565"
      },
      {
        "category": "external",
        "summary": "2218004",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
      },
      {
        "category": "external",
        "summary": "2231474",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2231474"
      },
      {
        "category": "external",
        "summary": "2238346",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238346"
      },
      {
        "category": "external",
        "summary": "2238348",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238348"
      },
      {
        "category": "external",
        "summary": "2238350",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238350"
      },
      {
        "category": "external",
        "summary": "2238353",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238353"
      },
      {
        "category": "external",
        "summary": "2238359",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238359"
      },
      {
        "category": "external",
        "summary": "2238361",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238361"
      },
      {
        "category": "external",
        "summary": "2238363",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238363"
      },
      {
        "category": "external",
        "summary": "2238367",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238367"
      },
      {
        "category": "external",
        "summary": "2238369",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238369"
      },
      {
        "category": "external",
        "summary": "2238371",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238371"
      },
      {
        "category": "external",
        "summary": "2239041",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2239041"
      },
      {
        "category": "external",
        "summary": "2240781",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2240781"
      },
      {
        "category": "external",
        "summary": "2241914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241914"
      },
      {
        "category": "external",
        "summary": "2242803",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
      },
      {
        "category": "external",
        "summary": "2243296",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5931.json"
      }
    ],
    "title": "Red Hat Security Advisory: Satellite 6.13.5 Async Security Update",
    "tracking": {
      "current_release_date": "2024-12-18T04:46:40+00:00",
      "generator": {
        "date": "2024-12-18T04:46:40+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.2.3"
        }
      },
      "id": "RHSA-2023:5931",
      "initial_release_date": "2023-10-19T13:15:21+00:00",
      "revision_history": [
        {
          "date": "2023-10-19T13:15:21+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2023-10-19T13:15:21+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2024-12-18T04:46:40+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite:6.13::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13-capsule",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite_capsule:6.13::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13-utils",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite_utils:6.13::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13-maintenance",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite_maintenance:6.13::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Satellite 6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "foreman-0:3.5.1.23-1.el8sat.src",
                "product": {
                  "name": "foreman-0:3.5.1.23-1.el8sat.src",
                  "product_id": "foreman-0:3.5.1.23-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman@3.5.1.23-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-installer-1:3.5.2.4-1.el8sat.src",
                "product": {
                  "name": "foreman-installer-1:3.5.2.4-1.el8sat.src",
                  "product_id": "foreman-installer-1:3.5.2.4-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-installer@3.5.2.4-1.el8sat?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
                "product": {
                  "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
                  "product_id": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pulpcore-selinux@1.3.3-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-django-0:3.2.21-1.el8pc.src",
                "product": {
                  "name": "python-django-0:3.2.21-1.el8pc.src",
                  "product_id": "python-django-0:3.2.21-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-django@3.2.21-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-gitpython-0:3.1.32-1.el8pc.src",
                "product": {
                  "name": "python-gitpython-0:3.1.32-1.el8pc.src",
                  "product_id": "python-gitpython-0:3.1.32-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-gitpython@3.1.32-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-pulpcore-0:3.21.18-1.el8pc.src",
                "product": {
                  "name": "python-pulpcore-0:3.21.18-1.el8pc.src",
                  "product_id": "python-pulpcore-0:3.21.18-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-pulpcore@3.21.18-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
                "product": {
                  "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
                  "product_id": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.2.12-1.el8sat?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
                "product": {
                  "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
                  "product_id": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_theme_satellite@11.0.0.6-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
                "product": {
                  "name": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
                  "product_id": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-katello@4.7.0.33-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-0:6.13.5-1.el8sat.src",
                "product": {
                  "name": "satellite-0:6.13.5-1.el8sat.src",
                  "product_id": "satellite-0:6.13.5-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite@6.13.5-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
                "product": {
                  "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
                  "product_id": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_rh_cloud@7.0.48-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-git-0:1.18.0-1.el8sat.src",
                "product": {
                  "name": "rubygem-git-0:1.18.0-1.el8sat.src",
                  "product_id": "rubygem-git-0:1.18.0-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-git@1.18.0-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "puppet-agent-0:7.26.0-3.el8sat.src",
                "product": {
                  "name": "puppet-agent-0:7.26.0-3.el8sat.src",
                  "product_id": "puppet-agent-0:7.26.0-3.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/puppet-agent@7.26.0-3.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
                "product": {
                  "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
                  "product_id": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-1.el8sat?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-debug@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-cli@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-dynflow-sidekiq@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-ec2@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-journald@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-libvirt@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-openstack@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-ovirt@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-postgresql@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-service@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-telemetry@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-vmware@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
                "product": {
                  "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
                  "product_id": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-installer@3.5.2.4-1.el8sat?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
                "product": {
                  "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
                  "product_id": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-installer-katello@3.5.2.4-1.el8sat?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python39-django-0:3.2.21-1.el8pc.noarch",
                "product": {
                  "name": "python39-django-0:3.2.21-1.el8pc.noarch",
                  "product_id": "python39-django-0:3.2.21-1.el8pc.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python39-django@3.2.21-1.el8pc?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
                "product": {
                  "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
                  "product_id": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python39-gitpython@3.1.32-1.el8pc?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
                "product": {
                  "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
                  "product_id": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python39-pulpcore@3.21.18-1.el8pc?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
                  "product_id": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.2.12-1.el8sat?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
                  "product_id": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_theme_satellite@11.0.0.6-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
                  "product_id": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-katello@4.7.0.33-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite-capsule@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-common-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-common-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-common-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite-common@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-cli-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-cli-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-cli-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite-cli@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
                  "product_id": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_rh_cloud@7.0.48-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-git-0:1.18.0-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-git-0:1.18.0-1.el8sat.noarch",
                  "product_id": "rubygem-git-0:1.18.0-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-git@1.18.0-1.el8sat?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
                "product": {
                  "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
                  "product_id": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pulpcore-selinux@1.3.3-1.el8pc?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
                "product": {
                  "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
                  "product_id": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/puppet-agent@7.26.0-3.el8sat?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
                "product": {
                  "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
                  "product_id": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-1.el8sat?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-django-0:3.2.21-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src"
        },
        "product_reference": "python-django-0:3.2.21-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-gitpython-0:3.1.32-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src"
        },
        "product_reference": "python-gitpython-0:3.1.32-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-pulpcore-0:3.21.18-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src"
        },
        "product_reference": "python-pulpcore-0:3.21.18-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-django-0:3.2.21-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch"
        },
        "product_reference": "python39-django-0:3.2.21-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        },
        "product_reference": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch"
        },
        "product_reference": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-cli-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-cli-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-common-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-common-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-maintenance"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-maintenance"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-cli-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-cli-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-common-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-common-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-django-0:3.2.21-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src"
        },
        "product_reference": "python-django-0:3.2.21-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-gitpython-0:3.1.32-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src"
        },
        "product_reference": "python-gitpython-0:3.1.32-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-pulpcore-0:3.21.18-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src"
        },
        "product_reference": "python-pulpcore-0:3.21.18-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-django-0:3.2.21-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
        },
        "product_reference": "python39-django-0:3.2.21-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        },
        "product_reference": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch"
        },
        "product_reference": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-git-0:1.18.0-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch"
        },
        "product_reference": "rubygem-git-0:1.18.0-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-git-0:1.18.0-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
        },
        "product_reference": "rubygem-git-0:1.18.0-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch"
        },
        "product_reference": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-katello-0:4.7.0.33-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src"
        },
        "product_reference": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-cli-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-cli-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-common-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-common-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src"
        },
        "product_reference": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        },
        "product_reference": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Elison Niven"
          ],
          "organization": "Sophos",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-1292",
      "cwe": {
        "id": "CWE-77",
        "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
      },
      "discovery_date": "2022-05-03T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2081494"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in OpenSSL. The `c_rehash` script does not properly sanitize shell meta-characters to prevent command injection. Some operating systems distribute this script in a manner where it is automatically executed. This flaw allows an attacker to execute arbitrary commands with the privileges of the script on these operating systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: c_rehash script allows command injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux uses a system-wide store of trusted certificates bundled in a single file and updated via `update-ca-trust`. The `c_rehash` script is not included in the default installation on any supported RHEL version, and is never executed automatically. For these reasons, this flaw has been rated as having a security impact of Moderate.\n\nRed Hat Enterprise Linux 7 provides a vulnerable version of the `c_rehash` script in the `openssl-perl` package, available only through the unsupported Optional repository.  As the Optional repository is not supported and Red Hat Enterprise Linux 7 is in Maintenance Support 2 Phase, this issue is not planned to be addressed there.\n\nRed Hat Satellite ships an affected version of the `c_rehash` script embedded in `puppet-agent` package, however, the product is not vulnerable since it does not execute scripts with untrusted data. Moreover, the scriplet is owned by root user and is supposed to be accessed only by administrators.\n\nRed Hat updates the OpenSSL compatibility packages (compat-openssl) to only address Important or Critical security issues with backported security patches.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-1292"
        },
        {
          "category": "external",
          "summary": "RHBZ#2081494",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2081494"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-1292",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1292",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1292"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20220503.txt",
          "url": "https://www.openssl.org/news/secadv/20220503.txt"
        }
      ],
      "release_date": "2022-05-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "As mentioned in the upstream security advisory, use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "openssl: c_rehash script allows command injection"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Chancen"
          ],
          "organization": "Qingteng 73lab",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-2068",
      "cwe": {
        "id": "CWE-77",
        "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
      },
      "discovery_date": "2022-06-15T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2097310"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in OpenSSL. The issue in CVE-2022-1292 did not find other places in the `c_rehash` script where it possibly passed the file names of certificates being hashed to a command executed through the shell. Some operating systems distribute this script in a manner where it is automatically executed. On these operating systems, this flaw allows an attacker to execute arbitrary commands with the privileges of the script.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: the c_rehash script allows command injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux uses a system-wide store of trusted certificates bundled in a single file and updated via `update-ca-trust`. The `c_rehash` script is not included in the default installation on any supported RHEL version and is never executed automatically. For these reasons, this flaw has been rated as having a security impact of Moderate.\n\nRed Hat Enterprise Linux 7 provides a vulnerable version of the `c_rehash` script in the `openssl-perl` package, available only through the unsupported Optional repository.  As the Optional repository is not supported and Red Hat Enterprise Linux 7 is in Maintenance Support 2 Phase, this issue is not planned to be addressed there.\n\nRed Hat Satellite ships an affected version of the `c_rehash` script embedded in `puppet-agent` package, however, the product is not vulnerable since it does not execute scripts with untrusted data. Moreover, the scriplet is owned by root user and is supposed to be accessed only by administrators.\n\nRed Hat updates the OpenSSL compatibility packages (compat-openssl) to only address Important or Critical security issues with backported security patches.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-2068"
        },
        {
          "category": "external",
          "summary": "RHBZ#2097310",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2097310"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-2068",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-2068"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2068",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2068"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20220621.txt",
          "url": "https://www.openssl.org/news/secadv/20220621.txt"
        }
      ],
      "release_date": "2022-06-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "As mentioned in the upstream security advisory, use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command-line tool.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "openssl: the c_rehash script allows command injection"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Evgeni Golov"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        },
        {
          "names": [
            "Andrew Danau"
          ],
          "organization": "Onsec.io"
        }
      ],
      "cve": "CVE-2022-3874",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "discovery_date": "2022-11-02T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2140577"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A command injection flaw was found in foreman. This flaw allows an authenticated user with admin privileges on the foreman instance to transpile commands through CoreOS and Fedora CoreOS configurations in templates, possibly resulting in arbitrary command execution on the underlying operating system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "foreman: OS command injection via ct_command and fcct_command",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-3874"
        },
        {
          "category": "external",
          "summary": "RHBZ#2140577",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140577"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-3874",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-3874"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3874",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3874"
        }
      ],
      "release_date": "2023-04-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "foreman: OS command injection via ct_command and fcct_command"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Sam Wheating"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-24439",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2022-12-06T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2151583"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A remote code execution vulnerability exists in Git-python. By injecting a malicious URL into the clone command, an attacker can exploit this vulnerability as the library makes external calls to git without any input sanitization. This issue leads to complete system compromise.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "GitPython: improper user input validation leads into a RCE",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Across all supported releases of Red Hat OpenStack Platform the usage of a compromised GitPython API (clone_from()) is quite limited. The only people capable of exploiting this vulnerability are system administrators. For this reason, the impact has been downgraded to medium.\n\nThe impact to Red Hat OpenStack Platform 17 is rated Low as the compromised function is not in use.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "RHBZ#2151583",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151583"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24439",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858",
          "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
        }
      ],
      "release_date": "2022-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "GitPython: improper user input validation leads into a RCE"
    },
    {
      "cve": "CVE-2022-46648",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2023-01-05T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2169385"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the ruby-git package, which allows a remote authenticated attacker to execute arbitrary code on the system, caused by a code injection flaw. An attacker can execute arbitrary code on the system by using a specially-crafted filename in the repository.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ruby-git: code injection vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-46648"
        },
        {
          "category": "external",
          "summary": "RHBZ#2169385",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2169385"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-46648",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-46648"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-46648",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-46648"
        },
        {
          "category": "external",
          "summary": "https://jvn.jp/en/jp/JVN16765254/",
          "url": "https://jvn.jp/en/jp/JVN16765254/"
        }
      ],
      "release_date": "2023-01-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ruby-git: code injection vulnerability"
    },
    {
      "cve": "CVE-2022-47318",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2023-01-05T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2159672"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A code injection flaw was found in the ruby-git package. This issue may allow a remote authenticated attacker to execute arbitrary code on the system by using a specially-crafted filename in the repository.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ruby-git: code injection vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-47318"
        },
        {
          "category": "external",
          "summary": "RHBZ#2159672",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2159672"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-47318",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-47318"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-47318",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-47318"
        },
        {
          "category": "external",
          "summary": "https://jvn.jp/en/jp/JVN16765254/",
          "url": "https://jvn.jp/en/jp/JVN16765254/"
        }
      ],
      "release_date": "2023-01-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ruby-git: code injection vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Andrew Danau"
          ],
          "organization": "Onsec.io"
        }
      ],
      "cve": "CVE-2023-0462",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2022-12-21T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2162970"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An arbitrary code execution flaw was found in Foreman. This issue may allow an admin user to execute arbitrary code on the underlying operating system by setting global parameters with a YAML payload.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Satellite/Foreman: Arbitrary code execution through yaml global parameters",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-0462"
        },
        {
          "category": "external",
          "summary": "RHBZ#2162970",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2162970"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-0462",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-0462"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-0462",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0462"
        }
      ],
      "release_date": "2023-03-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Satellite/Foreman: Arbitrary code execution through yaml global parameters"
    },
    {
      "cve": "CVE-2023-3817",
      "discovery_date": "2023-07-31T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2227852"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in OpenSSL. This security issue occurs because the applications that use the DH_check(), DH_check_ex(), or EVP_PKEY_param_check() functions to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source may lead to a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "OpenSSL: Excessive time spent checking DH q parameter value",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in OpenSSL is considered low severity primarily because it requires specific conditions to be exploited and has limited impact. While excessive computation time during DH parameter checks could potentially lead to denial of service (DoS) attacks, the likelihood of successful exploitation is relatively low. Additionally, the vulnerability mainly affects applications that use certain OpenSSL functions for DH parameter validation, rather than the broader SSL/TLS implementation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-3817"
        },
        {
          "category": "external",
          "summary": "RHBZ#2227852",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2227852"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-3817",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-3817"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-3817",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3817"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20230731.txt",
          "url": "https://www.openssl.org/news/secadv/20230731.txt"
        }
      ],
      "release_date": "2023-07-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "OpenSSL: Excessive time spent checking DH q parameter value"
    },
    {
      "cve": "CVE-2023-31047",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-04-26T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2192565"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A bypass of validation flaw was found in python-django. When uploading multiple files using one form field, an attacker could upload multiple files without validation due to the server only validating the last file uploaded.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-django: Potential bypass of validation when uploading multiple files using one form field",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Satellite and Red Hat Update Infrastructure individual impact ratings have been set to Low since initial privileges are required in order to access the server and the vulnerable functionality.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-31047"
        },
        {
          "category": "external",
          "summary": "RHBZ#2192565",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192565"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-31047",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-31047"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-31047",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31047"
        },
        {
          "category": "external",
          "summary": "https://www.djangoproject.com/weblog/2023/may/03/security-releases/",
          "url": "https://www.djangoproject.com/weblog/2023/may/03/security-releases/"
        }
      ],
      "release_date": "2023-05-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "python-django: Potential bypass of validation when uploading multiple files using one form field"
    },
    {
      "cve": "CVE-2023-36053",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2023-06-27T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2218004"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A regular expression denial of service vulnerability has been found in Django. Email and URL validators are vulnerable to this flaw when processing a very large number of domain name labels of emails and URLs.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-36053"
        },
        {
          "category": "external",
          "summary": "RHBZ#2218004",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-36053",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-36053"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053"
        },
        {
          "category": "external",
          "summary": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/",
          "url": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/"
        }
      ],
      "release_date": "2023-07-03T08:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator"
    },
    {
      "cve": "CVE-2023-39325",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2023-10-10T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2243296"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-39325"
        },
        {
          "category": "external",
          "summary": "RHBZ#2243296",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
        },
        {
          "category": "external",
          "summary": "RHSB-2023-003",
          "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
          "url": "https://access.redhat.com/security/cve/CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/63417",
          "url": "https://go.dev/issue/63417"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2023-2102",
          "url": "https://pkg.go.dev/vuln/GO-2023-2102"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
          "url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
        }
      ],
      "release_date": "2023-10-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
    },
    {
      "cve": "CVE-2023-40267",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-08-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2231474"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An improper input validation vulnerability was found in GitPython. This flaw allows an attacker to inject a maliciously crafted remote URL into the clone command, possibly leading to remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "GitPython: Insecure non-multi options in clone and clone_from is not blocked",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "In Red Hat Openstack, Red Hat Ansible Automation Platform, and Red Hat Certification Program, while the gitpython dependency is present, the affected codebase is not being used. \n\nRed Hat Satellite does not use the affected functions during runtime, therefore the possible impact is limited to Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40267"
        },
        {
          "category": "external",
          "summary": "RHBZ#2231474",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2231474"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40267",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40267"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40267",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40267"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-pr76-5cm5-w9cj",
          "url": "https://github.com/advisories/GHSA-pr76-5cm5-w9cj"
        }
      ],
      "release_date": "2023-08-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "GitPython: Insecure non-multi options in clone and clone_from is not blocked"
    },
    {
      "cve": "CVE-2023-44487",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2023-10-09T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2242803"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "RHBZ#2242803",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
        },
        {
          "category": "external",
          "summary": "RHSB-2023-003",
          "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://github.com/dotnet/announcements/issues/277",
          "url": "https://github.com/dotnet/announcements/issues/277"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2023-2102",
          "url": "https://pkg.go.dev/vuln/GO-2023-2102"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
          "url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
          "url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-10-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n     a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n     b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n     c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n     d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n     e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-10-10T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
    }
  ]
}

RHSA-2023:5931

Vulnerability from csaf_redhat - Published: 2023-10-19 13:15 - Updated: 2025-12-05 12:16

Summary

Red Hat Security Advisory: Satellite 6.13.5 Async Security Update

Notes

Topic

Details

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Important"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated Satellite 6.13 packages that fixes Important security bugs and several regular bugs are now available for Red Hat Satellite.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.\n\nSecurity fix(es):\n\n* Yggdrasil-worker-forwarder (gRPC): Rapid Reset Attack through HTTP/2 enabled web service which leads to DDoS attack (CVE-2023-44487 \u0026 CVE-2023-39325)\n\nA Red Hat Security Bulletin which addresses further details about this flaw is available in the References section.\n\n* Foreman: OS command injection via ct_command and fcct_command (CVE-2022-3874)\n\n* Foreman: Arbitrary code execution through yaml global parameters (CVE-2023-0462)\n\n* GitPython: Remote code execution and improper input validation vulnerability (CVE-2022-24439 \u0026 CVE-2023-40267)\n\n* Ruby-git \u0026 tfm-rubygem-git: Code injection vulnerability (CVE-2022-47318 \u0026 CVE-2022-46648)\n\n* Python-django: Multiple flaws (CVE-2023-31047 \u0026 CVE-2023-36053)\n\n* Puppet-agent (openssl): Multiple flaws (CVE-2022-1292 CVE-2022-2068)\n\nThis update fixes the following bugs:\n\n2238346 - Red Hat supported provisioning templates are not recognized by RH icon on the row for a given template\n2238348 - when creating a backup on rhel7 and restoring on rhel8, the restore process will fail with permission issues\n2238350 - Virtual machine goes in re-provisioning mode while registration host using Global registration template.\n2238359 - Capsule redundantly synces *-Export-Library repos\n2238361 - Can\u0027t update the redhat_repository_url without changing the cdn_configuration to custom_cdn\n2238363 - katello-certs-check does not cause the installer to halt execution on failure\n2238367 - Satellite Web UI \u003e\u003e Hosts \u003e\u003e All Hosts page loading slow even after power isn\u0027t selected from the new option \"Manage columns\".\n2238369 - Content-export incremental with syncable format based does not include productid file into repodata directory\n2238371 - SELinux is preventing pulpcore-worker from read access on the key labeled pulpcore_server_t\n2239041 - Reclaim space for repository fails with Cannot delete some instances of model \u0027Artifact\u0027 because they are referenced through protected foreign keys: \u0027ContentArtifact.artifact\u0027.\"\n2238353 - The \"hammer export\" command using single thread encryption causes a performance bottleneck.\n2240781 - Remediation from CRC via Satellite shows \"Failed\" status even after successful remediation of Insights recommendations. \n2241914 - \"NoMethodError: undefined method `fact_values\u0027\" while trying to perform inventory upload\n\nUsers of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2023:5931",
        "url": "https://access.redhat.com/errata/RHSA-2023:5931"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#important",
        "url": "https://access.redhat.com/security/updates/classification/#important"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.13/html/upgrading_and_updating_red_hat_satellite/index",
        "url": "https://access.redhat.com/documentation/en-us/red_hat_satellite/6.13/html/upgrading_and_updating_red_hat_satellite/index"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
        "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
      },
      {
        "category": "external",
        "summary": "2081494",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2081494"
      },
      {
        "category": "external",
        "summary": "2097310",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2097310"
      },
      {
        "category": "external",
        "summary": "2140577",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140577"
      },
      {
        "category": "external",
        "summary": "2151583",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151583"
      },
      {
        "category": "external",
        "summary": "2159672",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2159672"
      },
      {
        "category": "external",
        "summary": "2162970",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2162970"
      },
      {
        "category": "external",
        "summary": "2169385",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2169385"
      },
      {
        "category": "external",
        "summary": "2192565",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192565"
      },
      {
        "category": "external",
        "summary": "2218004",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
      },
      {
        "category": "external",
        "summary": "2231474",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2231474"
      },
      {
        "category": "external",
        "summary": "2238346",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238346"
      },
      {
        "category": "external",
        "summary": "2238348",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238348"
      },
      {
        "category": "external",
        "summary": "2238350",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238350"
      },
      {
        "category": "external",
        "summary": "2238353",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238353"
      },
      {
        "category": "external",
        "summary": "2238359",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238359"
      },
      {
        "category": "external",
        "summary": "2238361",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238361"
      },
      {
        "category": "external",
        "summary": "2238363",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238363"
      },
      {
        "category": "external",
        "summary": "2238367",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238367"
      },
      {
        "category": "external",
        "summary": "2238369",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238369"
      },
      {
        "category": "external",
        "summary": "2238371",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238371"
      },
      {
        "category": "external",
        "summary": "2239041",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2239041"
      },
      {
        "category": "external",
        "summary": "2240781",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2240781"
      },
      {
        "category": "external",
        "summary": "2241914",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241914"
      },
      {
        "category": "external",
        "summary": "2242803",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
      },
      {
        "category": "external",
        "summary": "2243296",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5931.json"
      }
    ],
    "title": "Red Hat Security Advisory: Satellite 6.13.5 Async Security Update",
    "tracking": {
      "current_release_date": "2025-12-05T12:16:54+00:00",
      "generator": {
        "date": "2025-12-05T12:16:54+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.13"
        }
      },
      "id": "RHSA-2023:5931",
      "initial_release_date": "2023-10-19T13:15:21+00:00",
      "revision_history": [
        {
          "date": "2023-10-19T13:15:21+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2023-10-19T13:15:21+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-12-05T12:16:54+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite:6.13::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13-capsule",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite_capsule:6.13::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13-utils",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite_utils:6.13::el8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Satellite 6.13 for RHEL 8",
                "product": {
                  "name": "Red Hat Satellite 6.13 for RHEL 8",
                  "product_id": "8Base-satellite-6.13-maintenance",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:redhat:satellite_maintenance:6.13::el8"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Satellite 6"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "foreman-0:3.5.1.23-1.el8sat.src",
                "product": {
                  "name": "foreman-0:3.5.1.23-1.el8sat.src",
                  "product_id": "foreman-0:3.5.1.23-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman@3.5.1.23-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-installer-1:3.5.2.4-1.el8sat.src",
                "product": {
                  "name": "foreman-installer-1:3.5.2.4-1.el8sat.src",
                  "product_id": "foreman-installer-1:3.5.2.4-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-installer@3.5.2.4-1.el8sat?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
                "product": {
                  "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
                  "product_id": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pulpcore-selinux@1.3.3-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-django-0:3.2.21-1.el8pc.src",
                "product": {
                  "name": "python-django-0:3.2.21-1.el8pc.src",
                  "product_id": "python-django-0:3.2.21-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-django@3.2.21-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-gitpython-0:3.1.32-1.el8pc.src",
                "product": {
                  "name": "python-gitpython-0:3.1.32-1.el8pc.src",
                  "product_id": "python-gitpython-0:3.1.32-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-gitpython@3.1.32-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python-pulpcore-0:3.21.18-1.el8pc.src",
                "product": {
                  "name": "python-pulpcore-0:3.21.18-1.el8pc.src",
                  "product_id": "python-pulpcore-0:3.21.18-1.el8pc.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python-pulpcore@3.21.18-1.el8pc?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
                "product": {
                  "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
                  "product_id": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.2.12-1.el8sat?arch=src\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
                "product": {
                  "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
                  "product_id": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_theme_satellite@11.0.0.6-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
                "product": {
                  "name": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
                  "product_id": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-katello@4.7.0.33-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-0:6.13.5-1.el8sat.src",
                "product": {
                  "name": "satellite-0:6.13.5-1.el8sat.src",
                  "product_id": "satellite-0:6.13.5-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite@6.13.5-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
                "product": {
                  "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
                  "product_id": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_rh_cloud@7.0.48-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-git-0:1.18.0-1.el8sat.src",
                "product": {
                  "name": "rubygem-git-0:1.18.0-1.el8sat.src",
                  "product_id": "rubygem-git-0:1.18.0-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-git@1.18.0-1.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "puppet-agent-0:7.26.0-3.el8sat.src",
                "product": {
                  "name": "puppet-agent-0:7.26.0-3.el8sat.src",
                  "product_id": "puppet-agent-0:7.26.0-3.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/puppet-agent@7.26.0-3.el8sat?arch=src"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
                "product": {
                  "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
                  "product_id": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-1.el8sat?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-debug@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-cli@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-dynflow-sidekiq@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-ec2@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-journald@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-libvirt@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-openstack@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-ovirt@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-postgresql@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-service@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-telemetry@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
                "product": {
                  "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
                  "product_id": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-vmware@3.5.1.23-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
                "product": {
                  "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
                  "product_id": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-installer@3.5.2.4-1.el8sat?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
                "product": {
                  "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
                  "product_id": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/foreman-installer-katello@3.5.2.4-1.el8sat?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python39-django-0:3.2.21-1.el8pc.noarch",
                "product": {
                  "name": "python39-django-0:3.2.21-1.el8pc.noarch",
                  "product_id": "python39-django-0:3.2.21-1.el8pc.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python39-django@3.2.21-1.el8pc?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
                "product": {
                  "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
                  "product_id": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python39-gitpython@3.1.32-1.el8pc?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
                "product": {
                  "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
                  "product_id": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/python39-pulpcore@3.21.18-1.el8pc?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
                  "product_id": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_maintain@1.2.12-1.el8sat?arch=noarch\u0026epoch=1"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
                  "product_id": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_theme_satellite@11.0.0.6-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
                  "product_id": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-katello@4.7.0.33-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite-capsule@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-common-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-common-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-common-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite-common@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "satellite-cli-0:6.13.5-1.el8sat.noarch",
                "product": {
                  "name": "satellite-cli-0:6.13.5-1.el8sat.noarch",
                  "product_id": "satellite-cli-0:6.13.5-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/satellite-cli@6.13.5-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
                  "product_id": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-foreman_rh_cloud@7.0.48-1.el8sat?arch=noarch"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "rubygem-git-0:1.18.0-1.el8sat.noarch",
                "product": {
                  "name": "rubygem-git-0:1.18.0-1.el8sat.noarch",
                  "product_id": "rubygem-git-0:1.18.0-1.el8sat.noarch",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/rubygem-git@1.18.0-1.el8sat?arch=noarch"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "noarch"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
                "product": {
                  "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
                  "product_id": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/pulpcore-selinux@1.3.3-1.el8pc?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
                "product": {
                  "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
                  "product_id": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/puppet-agent@7.26.0-3.el8sat?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
                "product": {
                  "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
                  "product_id": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/yggdrasil-worker-forwarder@0.0.3-1.el8sat?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-django-0:3.2.21-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src"
        },
        "product_reference": "python-django-0:3.2.21-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-gitpython-0:3.1.32-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src"
        },
        "product_reference": "python-gitpython-0:3.1.32-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-pulpcore-0:3.21.18-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src"
        },
        "product_reference": "python-pulpcore-0:3.21.18-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-django-0:3.2.21-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch"
        },
        "product_reference": "python39-django-0:3.2.21-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        },
        "product_reference": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch"
        },
        "product_reference": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-cli-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-cli-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-common-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-common-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-capsule"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-maintenance"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-maintenance"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-cli-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-cli-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-common-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-common-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13-utils"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-0:3.5.1.23-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src"
        },
        "product_reference": "foreman-0:3.5.1.23-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-cli-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-cli-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-debug-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-debug-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-1:3.5.2.4-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src"
        },
        "product_reference": "foreman-installer-1:3.5.2.4-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch"
        },
        "product_reference": "foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-journald-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-journald-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-service-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-service-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        },
        "product_reference": "foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64"
        },
        "product_reference": "pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "puppet-agent-0:7.26.0-3.el8sat.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        },
        "product_reference": "puppet-agent-0:7.26.0-3.el8sat.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-django-0:3.2.21-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src"
        },
        "product_reference": "python-django-0:3.2.21-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-gitpython-0:3.1.32-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src"
        },
        "product_reference": "python-gitpython-0:3.1.32-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python-pulpcore-0:3.21.18-1.el8pc.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src"
        },
        "product_reference": "python-pulpcore-0:3.21.18-1.el8pc.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-django-0:3.2.21-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
        },
        "product_reference": "python39-django-0:3.2.21-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-gitpython-0:3.1.32-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        },
        "product_reference": "python39-gitpython-0:3.1.32-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "python39-pulpcore-0:3.21.18-1.el8pc.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch"
        },
        "product_reference": "python39-pulpcore-0:3.21.18-1.el8pc.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch"
        },
        "product_reference": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src"
        },
        "product_reference": "rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-git-0:1.18.0-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch"
        },
        "product_reference": "rubygem-git-0:1.18.0-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-git-0:1.18.0-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
        },
        "product_reference": "rubygem-git-0:1.18.0-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch"
        },
        "product_reference": "rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "rubygem-katello-0:4.7.0.33-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src"
        },
        "product_reference": "rubygem-katello-0:4.7.0.33-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-0:6.13.5-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src"
        },
        "product_reference": "satellite-0:6.13.5-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-capsule-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-capsule-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-cli-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-cli-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "satellite-common-0:6.13.5-1.el8sat.noarch as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
        },
        "product_reference": "satellite-common-0:6.13.5-1.el8sat.noarch",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src"
        },
        "product_reference": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
        "relates_to_product_reference": "8Base-satellite-6.13"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64 as a component of Red Hat Satellite 6.13 for RHEL 8",
          "product_id": "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        },
        "product_reference": "yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64",
        "relates_to_product_reference": "8Base-satellite-6.13"
      }
    ]
  },
  "vulnerabilities": [
    {
      "acknowledgments": [
        {
          "names": [
            "Elison Niven"
          ],
          "organization": "Sophos",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-1292",
      "cwe": {
        "id": "CWE-77",
        "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
      },
      "discovery_date": "2022-05-03T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2081494"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in OpenSSL. The `c_rehash` script does not properly sanitize shell meta-characters to prevent command injection. Some operating systems distribute this script in a manner where it is automatically executed. This flaw allows an attacker to execute arbitrary commands with the privileges of the script on these operating systems.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: c_rehash script allows command injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux uses a system-wide store of trusted certificates bundled in a single file and updated via `update-ca-trust`. The `c_rehash` script is not included in the default installation on any supported RHEL version, and is never executed automatically. For these reasons, this flaw has been rated as having a security impact of Moderate.\n\nRed Hat Enterprise Linux 7 provides a vulnerable version of the `c_rehash` script in the `openssl-perl` package, available only through the unsupported Optional repository.  As the Optional repository is not supported and Red Hat Enterprise Linux 7 is in Maintenance Support 2 Phase, this issue is not planned to be addressed there.\n\nRed Hat Satellite ships an affected version of the `c_rehash` script embedded in `puppet-agent` package, however, the product is not vulnerable since it does not execute scripts with untrusted data. Moreover, the scriplet is owned by root user and is supposed to be accessed only by administrators.\n\nRed Hat updates the OpenSSL compatibility packages (compat-openssl) to only address Important or Critical security issues with backported security patches.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-77: Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations were established during the initial design of the system architecture and security boundary. Static code testing (SAST, DAST) is conducted before entry into the environment. CI/CD configurations help to restrict the use of commands or scripts that could be exploited by command injection and are coupled with a two-person review for all manual code promotions. The attack surface is limited through least privilege and least functionality enforcement, ensuring only authorized personnel can carry out these tasks and that only essential services and ports are enabled. Input validation is performed for all services or features within the system boundary, reducing the risk of improper input handling or command injection. Additionally, malicious code protection and system monitoring work together to minimize potential impacts by detecting, blocking, and responding in the case of successful exploitation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-1292"
        },
        {
          "category": "external",
          "summary": "RHBZ#2081494",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2081494"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-1292",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-1292",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-1292"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20220503.txt",
          "url": "https://www.openssl.org/news/secadv/20220503.txt"
        }
      ],
      "release_date": "2022-05-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "As mentioned in the upstream security advisory, use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command line tool.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "openssl: c_rehash script allows command injection"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Chancen"
          ],
          "organization": "Qingteng 73lab",
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-2068",
      "cwe": {
        "id": "CWE-77",
        "name": "Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027)"
      },
      "discovery_date": "2022-06-15T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2097310"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in OpenSSL. The issue in CVE-2022-1292 did not find other places in the `c_rehash` script where it possibly passed the file names of certificates being hashed to a command executed through the shell. Some operating systems distribute this script in a manner where it is automatically executed. On these operating systems, this flaw allows an attacker to execute arbitrary commands with the privileges of the script.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "openssl: the c_rehash script allows command injection",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Enterprise Linux uses a system-wide store of trusted certificates bundled in a single file and updated via `update-ca-trust`. The `c_rehash` script is not included in the default installation on any supported RHEL version and is never executed automatically. For these reasons, this flaw has been rated as having a security impact of Moderate.\n\nRed Hat Enterprise Linux 7 provides a vulnerable version of the `c_rehash` script in the `openssl-perl` package, available only through the unsupported Optional repository.  As the Optional repository is not supported and Red Hat Enterprise Linux 7 is in Maintenance Support 2 Phase, this issue is not planned to be addressed there.\n\nRed Hat Satellite ships an affected version of the `c_rehash` script embedded in `puppet-agent` package, however, the product is not vulnerable since it does not execute scripts with untrusted data. Moreover, the scriplet is owned by root user and is supposed to be accessed only by administrators.\n\nRed Hat updates the OpenSSL compatibility packages (compat-openssl) to only address Important or Critical security issues with backported security patches.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-77: Improper Neutralization of Special Elements used in a Command (\u0027Command Injection\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations were established during the initial design of the system architecture and security boundary. Static code testing (SAST, DAST) is conducted before entry into the environment. CI/CD configurations help to restrict the use of commands or scripts that could be exploited by command injection and are coupled with a two-person review for all manual code promotions. The attack surface is limited through least privilege and least functionality enforcement, ensuring only authorized personnel can carry out these tasks and that only essential services and ports are enabled. Input validation is performed for all services or features within the system boundary, reducing the risk of improper input handling or command injection. Additionally, malicious code protection and system monitoring work together to minimize potential impacts by detecting, blocking, and responding in the case of successful exploitation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-2068"
        },
        {
          "category": "external",
          "summary": "RHBZ#2097310",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2097310"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-2068",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-2068"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-2068",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-2068"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20220621.txt",
          "url": "https://www.openssl.org/news/secadv/20220621.txt"
        }
      ],
      "release_date": "2022-06-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "As mentioned in the upstream security advisory, use of the c_rehash script is considered obsolete and should be replaced by the OpenSSL rehash command-line tool.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 6.7,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "openssl: the c_rehash script allows command injection"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Evgeni Golov"
          ],
          "organization": "Red Hat",
          "summary": "This issue was discovered by Red Hat."
        },
        {
          "names": [
            "Andrew Danau"
          ],
          "organization": "Onsec.io"
        }
      ],
      "cve": "CVE-2022-3874",
      "cwe": {
        "id": "CWE-78",
        "name": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)"
      },
      "discovery_date": "2022-11-02T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2140577"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A command injection flaw was found in foreman. This flaw allows an authenticated user with admin privileges on the foreman instance to transpile commands through CoreOS and Fedora CoreOS configurations in templates, possibly resulting in arbitrary command execution on the underlying operating system.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "foreman: OS command injection via ct_command and fcct_command",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-3874"
        },
        {
          "category": "external",
          "summary": "RHBZ#2140577",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2140577"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-3874",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-3874"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-3874",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-3874"
        }
      ],
      "release_date": "2023-04-19T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "foreman: OS command injection via ct_command and fcct_command"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Sam Wheating"
          ],
          "summary": "Acknowledged by upstream."
        }
      ],
      "cve": "CVE-2022-24439",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2022-12-06T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2151583"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A remote code execution vulnerability exists in Git-python. By injecting a malicious URL into the clone command, an attacker can exploit this vulnerability as the library makes external calls to git without any input sanitization. This issue leads to complete system compromise.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "GitPython: improper user input validation leads into a RCE",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Across all supported releases of Red Hat OpenStack Platform the usage of a compromised GitPython API (clone_from()) is quite limited. The only people capable of exploiting this vulnerability are system administrators. For this reason, the impact has been downgraded to medium.\n\nThe impact to Red Hat OpenStack Platform 17 is rated Low as the compromised function is not in use.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "RHBZ#2151583",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2151583"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-24439",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-24439"
        },
        {
          "category": "external",
          "summary": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858",
          "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
        }
      ],
      "release_date": "2022-12-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "GitPython: improper user input validation leads into a RCE"
    },
    {
      "cve": "CVE-2022-46648",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2023-01-05T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2169385"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in the ruby-git package, which allows a remote authenticated attacker to execute arbitrary code on the system, caused by a code injection flaw. An attacker can execute arbitrary code on the system by using a specially-crafted filename in the repository.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ruby-git: code injection vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-46648"
        },
        {
          "category": "external",
          "summary": "RHBZ#2169385",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2169385"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-46648",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-46648"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-46648",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-46648"
        },
        {
          "category": "external",
          "summary": "https://jvn.jp/en/jp/JVN16765254/",
          "url": "https://jvn.jp/en/jp/JVN16765254/"
        }
      ],
      "release_date": "2023-01-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ruby-git: code injection vulnerability"
    },
    {
      "cve": "CVE-2022-47318",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2023-01-05T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2159672"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A code injection flaw was found in the ruby-git package. This issue may allow a remote authenticated attacker to execute arbitrary code on the system by using a specially-crafted filename in the repository.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "ruby-git: code injection vulnerability",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2022-47318"
        },
        {
          "category": "external",
          "summary": "RHBZ#2159672",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2159672"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2022-47318",
          "url": "https://www.cve.org/CVERecord?id=CVE-2022-47318"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2022-47318",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-47318"
        },
        {
          "category": "external",
          "summary": "https://jvn.jp/en/jp/JVN16765254/",
          "url": "https://jvn.jp/en/jp/JVN16765254/"
        }
      ],
      "release_date": "2023-01-05T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.0,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "ruby-git: code injection vulnerability"
    },
    {
      "acknowledgments": [
        {
          "names": [
            "Andrew Danau"
          ],
          "organization": "Onsec.io"
        }
      ],
      "cve": "CVE-2023-0462",
      "cwe": {
        "id": "CWE-94",
        "name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
      },
      "discovery_date": "2022-12-21T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2162970"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An arbitrary code execution flaw was found in Foreman. This issue may allow an admin user to execute arbitrary code on the underlying operating system by setting global parameters with a YAML payload.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "Satellite/Foreman: Arbitrary code execution through yaml global parameters",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-0462"
        },
        {
          "category": "external",
          "summary": "RHBZ#2162970",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2162970"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-0462",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-0462"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-0462",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-0462"
        }
      ],
      "release_date": "2023-03-21T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.1,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "HIGH",
            "scope": "CHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Important"
        }
      ],
      "title": "Satellite/Foreman: Arbitrary code execution through yaml global parameters"
    },
    {
      "cve": "CVE-2023-3817",
      "discovery_date": "2023-07-31T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2227852"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A vulnerability was found in OpenSSL. This security issue occurs because the applications that use the DH_check(), DH_check_ex(), or EVP_PKEY_param_check() functions to check a DH key or DH parameters may experience long delays. Where the key or parameters that are being checked have been obtained from an untrusted source may lead to a denial of service.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "OpenSSL: Excessive time spent checking DH q parameter value",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This vulnerability in OpenSSL is considered low severity primarily because it requires specific conditions to be exploited and has limited impact. While excessive computation time during DH parameter checks could potentially lead to denial of service (DoS) attacks, the likelihood of successful exploitation is relatively low. Additionally, the vulnerability mainly affects applications that use certain OpenSSL functions for DH parameter validation, rather than the broader SSL/TLS implementation.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-3817"
        },
        {
          "category": "external",
          "summary": "RHBZ#2227852",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2227852"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-3817",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-3817"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-3817",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-3817"
        },
        {
          "category": "external",
          "summary": "https://www.openssl.org/news/secadv/20230731.txt",
          "url": "https://www.openssl.org/news/secadv/20230731.txt"
        }
      ],
      "release_date": "2023-07-31T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "OpenSSL: Excessive time spent checking DH q parameter value"
    },
    {
      "cve": "CVE-2023-31047",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-04-26T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2192565"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A bypass of validation flaw was found in python-django. When uploading multiple files using one form field, an attacker could upload multiple files without validation due to the server only validating the last file uploaded.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-django: Potential bypass of validation when uploading multiple files using one form field",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "Red Hat Satellite and Red Hat Update Infrastructure individual impact ratings have been set to Low since initial privileges are required in order to access the server and the vulnerable functionality.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-31047"
        },
        {
          "category": "external",
          "summary": "RHBZ#2192565",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2192565"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-31047",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-31047"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-31047",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-31047"
        },
        {
          "category": "external",
          "summary": "https://www.djangoproject.com/weblog/2023/may/03/security-releases/",
          "url": "https://www.djangoproject.com/weblog/2023/may/03/security-releases/"
        }
      ],
      "release_date": "2023-05-03T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "python-django: Potential bypass of validation when uploading multiple files using one form field"
    },
    {
      "cve": "CVE-2023-36053",
      "cwe": {
        "id": "CWE-1333",
        "name": "Inefficient Regular Expression Complexity"
      },
      "discovery_date": "2023-06-27T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2218004"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A regular expression denial of service vulnerability has been found in Django. Email and URL validators are vulnerable to this flaw when processing a very large number of domain name labels of emails and URLs.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator",
          "title": "Vulnerability summary"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-36053"
        },
        {
          "category": "external",
          "summary": "RHBZ#2218004",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-36053",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-36053"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053"
        },
        {
          "category": "external",
          "summary": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/",
          "url": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/"
        }
      ],
      "release_date": "2023-07-03T08:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator"
    },
    {
      "cve": "CVE-2023-39325",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2023-10-10T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2243296"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nAs go-lang vendors its dependencies, a package may contain a library with a known vulnerability, solely because of lower tier libraries including it as a part of its dependencies, but the vulnerable code is not reachable at runtime. In such cases the issue is not exploitable. We classify these situations as \u201cNot affected\u201d or \u201cWill not fix,\u201d depending on the risk of breaking other unrelated packages.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-39325"
        },
        {
          "category": "external",
          "summary": "RHBZ#2243296",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
        },
        {
          "category": "external",
          "summary": "RHSB-2023-003",
          "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
        },
        {
          "category": "external",
          "summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
          "url": "https://access.redhat.com/security/cve/CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://go.dev/issue/63417",
          "url": "https://go.dev/issue/63417"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2023-2102",
          "url": "https://pkg.go.dev/vuln/GO-2023-2102"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
          "url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
        }
      ],
      "release_date": "2023-10-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
    },
    {
      "cve": "CVE-2023-40267",
      "cwe": {
        "id": "CWE-20",
        "name": "Improper Input Validation"
      },
      "discovery_date": "2023-08-11T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2231474"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "An improper input validation vulnerability was found in GitPython. This flaw allows an attacker to inject a maliciously crafted remote URL into the clone command, possibly leading to remote code execution.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "GitPython: Insecure non-multi options in clone and clone_from is not blocked",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "In Red Hat Openstack, Red Hat Ansible Automation Platform, and Red Hat Certification Program, while the gitpython dependency is present, the affected codebase is not being used. \n\nRed Hat Satellite does not use the affected functions during runtime, therefore the possible impact is limited to Moderate.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-40267"
        },
        {
          "category": "external",
          "summary": "RHBZ#2231474",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2231474"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-40267",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-40267"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-40267",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-40267"
        },
        {
          "category": "external",
          "summary": "https://github.com/advisories/GHSA-pr76-5cm5-w9cj",
          "url": "https://github.com/advisories/GHSA-pr76-5cm5-w9cj"
        }
      ],
      "release_date": "2023-08-11T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "GitPython: Insecure non-multi options in clone and clone_from is not blocked"
    },
    {
      "cve": "CVE-2023-44487",
      "cwe": {
        "id": "CWE-400",
        "name": "Uncontrolled Resource Consumption"
      },
      "discovery_date": "2023-10-09T00:00:00+00:00",
      "flags": [
        {
          "label": "vulnerable_code_not_present",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
          ]
        }
      ],
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "2242803"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the Rapid Reset Attack in the Go language packages.\r\n\r\nSecurity Bulletin\r\nhttps://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)",
          "title": "Vulnerability summary"
        },
        {
          "category": "other",
          "text": "NGINX has been marked as Moderate Impact because, for performance and resource consumption reasons, NGINX limits the number of concurrent streams to a default of 128. In addition, to optimally balance network and server performance, NGINX allows the client to persist HTTP connections for up to 1000 requests by default using an HTTP keepalive.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.\n\nrhc component is no longer impacted by CVE-2023-44487 \u0026 CVE-2023-39325.",
          "title": "Statement"
        },
        {
          "category": "general",
          "text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
          "title": "CVSS score applicability"
        }
      ],
      "product_status": {
        "fixed": [
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
          "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
        ],
        "known_not_affected": [
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
          "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
          "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
          "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
          "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
          "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
          "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
          "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
          "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
          "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
          "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
          "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
          "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "RHBZ#2242803",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242803"
        },
        {
          "category": "external",
          "summary": "RHSB-2023-003",
          "url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2023-44487",
          "url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://github.com/dotnet/announcements/issues/277",
          "url": "https://github.com/dotnet/announcements/issues/277"
        },
        {
          "category": "external",
          "summary": "https://pkg.go.dev/vuln/GO-2023-2102",
          "url": "https://pkg.go.dev/vuln/GO-2023-2102"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
          "url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
        },
        {
          "category": "external",
          "summary": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/",
          "url": "https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/"
        },
        {
          "category": "external",
          "summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
          "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        }
      ],
      "release_date": "2023-10-10T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2023-10-19T13:15:21+00:00",
          "details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
          "product_ids": [
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2023:5931"
        },
        {
          "category": "workaround",
          "details": "Users are strongly urged to update their software as soon as fixes are available. \nThere are several mitigation approaches for this flaw. \n\n1. If circumstances permit, users may disable http2 endpoints to circumvent the flaw altogether until a fix is available.\n2. IP-based blocking or flood protection and rate control tools may be used at network endpoints to filter incoming traffic.\n3. Several package specific mitigations are also available. \n     a. nginx: https://www.nginx.com/blog/http-2-rapid-reset-attack-impacting-f5-nginx-products/\n     b. netty: https://github.com/netty/netty/security/advisories/GHSA-xpw8-rcwv-8f8p\n     c. haproxy: https://www.haproxy.com/blog/haproxy-is-not-affected-by-the-http-2-rapid-reset-attack-cve-2023-44487\n     d. nghttp2: https://github.com/nghttp2/nghttp2/security/advisories/GHSA-vx74-f528-fxqg\n     e. golang: The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
          "product_ids": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 7.5,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13-capsule:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13-capsule:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13-capsule:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13-capsule:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13-capsule:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-capsule:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-capsule:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13-maintenance:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13-utils:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13-utils:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13-utils:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-0:3.5.1.23-1.el8sat.src",
            "8Base-satellite-6.13:foreman-cli-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-debug-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-dynflow-sidekiq-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ec2-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-installer-1:3.5.2.4-1.el8sat.src",
            "8Base-satellite-6.13:foreman-installer-katello-1:3.5.2.4-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-journald-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-libvirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-openstack-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-ovirt-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-postgresql-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-service-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-telemetry-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:foreman-vmware-0:3.5.1.23-1.el8sat.noarch",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.src",
            "8Base-satellite-6.13:pulpcore-selinux-0:1.3.3-1.el8pc.x86_64",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.src",
            "8Base-satellite-6.13:puppet-agent-0:7.26.0-3.el8sat.x86_64",
            "8Base-satellite-6.13:python-django-0:3.2.21-1.el8pc.src",
            "8Base-satellite-6.13:python-gitpython-0:3.1.32-1.el8pc.src",
            "8Base-satellite-6.13:python-pulpcore-0:3.21.18-1.el8pc.src",
            "8Base-satellite-6.13:python39-django-0:3.2.21-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-gitpython-0:3.1.32-1.el8pc.noarch",
            "8Base-satellite-6.13:python39-pulpcore-0:3.21.18-1.el8pc.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_maintain-1:1.2.12-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_rh_cloud-0:7.0.48-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-foreman_theme_satellite-0:11.0.0.6-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-git-0:1.18.0-1.el8sat.src",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.noarch",
            "8Base-satellite-6.13:rubygem-katello-0:4.7.0.33-1.el8sat.src",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-0:6.13.5-1.el8sat.src",
            "8Base-satellite-6.13:satellite-capsule-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-cli-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:satellite-common-0:6.13.5-1.el8sat.noarch",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.src",
            "8Base-satellite-6.13:yggdrasil-worker-forwarder-0:0.0.3-1.el8sat.x86_64"
          ]
        }
      ],
      "threats": [
        {
          "category": "exploit_status",
          "date": "2023-10-10T00:00:00+00:00",
          "details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
        },
        {
          "category": "impact",
          "details": "Moderate"
        }
      ],
      "title": "HTTP/2: Multiple HTTP/2 enabled web servers are vulnerable to a DDoS attack (Rapid Reset Attack)"
    }
  ]
}

GSD-2022-24439

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2022-24439

Aliases

CVE-2022-24439

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-24439",
    "id": "GSD-2022-24439",
    "references": [
      "https://advisories.mageia.org/CVE-2022-24439.html",
      "https://www.suse.com/security/cve/CVE-2022-24439.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-24439"
      ],
      "details": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
      "id": "GSD-2022-24439",
      "modified": "2023-12-13T01:19:43.018772Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "report@snyk.io",
        "DATE_PUBLIC": "2022-12-06T05:00:01.400400Z",
        "ID": "CVE-2022-24439",
        "STATE": "PUBLIC",
        "TITLE": "Remote Code Execution (RCE)"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "GitPython",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003e=",
                          "version_value": "0"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "credit": [
        {
          "lang": "eng",
          "value": "Sam Wheating"
        }
      ],
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments."
          }
        ]
      },
      "impact": {
        "cvss": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        }
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Remote Code Execution (RCE)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858",
            "refsource": "MISC",
            "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
          },
          {
            "name": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249",
            "refsource": "MISC",
            "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249"
          },
          {
            "name": "FEDORA-2022-8146a727a8",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/"
          },
          {
            "name": "FEDORA-2022-ce7369b9ec",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/"
          },
          {
            "name": "[debian-lts-announce] 20230725 [SECURITY] [DLA 3502-1] python-git security update",
            "refsource": "MLIST",
            "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html"
          },
          {
            "name": "FEDORA-2023-1ec4e542f9",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/"
          },
          {
            "name": "FEDORA-2023-26116901d9",
            "refsource": "FEDORA",
            "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/"
          },
          {
            "name": "GLSA-202311-01",
            "refsource": "GENTOO",
            "url": "https://security.gentoo.org/glsa/202311-01"
          }
        ]
      }
    },
    "gitlab.com": {
      "advisories": [
        {
          "affected_range": "\u003c3.1.30",
          "affected_versions": "All versions before 3.1.30",
          "cvss_v3": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "cwe_ids": [
            "CWE-1035",
            "CWE-20",
            "CWE-937"
          ],
          "date": "2023-08-25",
          "description": "All versions of package gitpython is vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
          "fixed_versions": [
            "3.1.30"
          ],
          "identifier": "CVE-2022-24439",
          "identifiers": [
            "CVE-2022-24439",
            "GHSA-hcpj-qp55-gfph"
          ],
          "not_impacted": "All versions starting from 3.1.30",
          "package_slug": "pypi/GitPython",
          "pubdate": "2022-12-06",
          "solution": "Upgrade to version 3.1.30 or above.",
          "title": "Improper Neutralization of Special Elements used in an OS Command (\u0027OS Command Injection\u0027)",
          "urls": [
            "https://nvd.nist.gov/vuln/detail/CVE-2022-24439",
            "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249",
            "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858",
            "https://github.com/advisories/GHSA-hcpj-qp55-gfph"
          ],
          "uuid": "f7fd53d4-028a-4a32-b964-6beb4d221a4f"
        }
      ]
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:gitpython_project:gitpython:*:*:*:*:*:python:*:*",
                    "matchCriteriaId": "449620FB-DFA3-4ECB-9C7E-817011E15449",
                    "versionEndExcluding": "3.1.30",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*",
                    "matchCriteriaId": "5C675112-476C-4D7C-BCB9-A2FB2D0BC9FD",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*",
                    "matchCriteriaId": "E30D0E6F-4AE8-4284-8716-991DFA48CC5D",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*",
                    "matchCriteriaId": "CC559B26-5DFC-4B7A-A27C-B77DE755DFF9",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*",
                    "matchCriteriaId": "07B237A9-69A3-4A9C-9DA0-4E06BD37AE73",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments."
          },
          {
            "lang": "es",
            "value": "Todas las versiones del paquete gitpython son vulnerables a la ejecuci\u00f3n remota de c\u00f3digo (RCE) debido a una validaci\u00f3n incorrecta de la entrada del usuario, lo que hace posible inyectar una URL remota creada con fines malintencionados en el comando de clonaci\u00f3n. Es posible explotar esta vulnerabilidad porque la librer\u00eda realiza llamadas externas a git sin una sanitizaci\u00f3n suficiente de los argumentos de entrada."
          }
        ],
        "id": "CVE-2022-24439",
        "lastModified": "2024-01-09T03:21:50.680",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 9.8,
                "baseSeverity": "CRITICAL",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 3.9,
              "impactScore": 5.9,
              "source": "nvd@nist.gov",
              "type": "Primary"
            },
            {
              "cvssData": {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.1,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 2.2,
              "impactScore": 5.9,
              "source": "report@snyk.io",
              "type": "Secondary"
            }
          ]
        },
        "published": "2022-12-06T05:15:11.420",
        "references": [
          {
            "source": "report@snyk.io",
            "tags": [
              "Broken Link"
            ],
            "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2023/07/msg00024.html"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AV5DV7GBLMOZT7U3Q4TDOJO5R6G3V6GH/"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PF6AXUTC5BO7L2SBJMCVKJSPKWY52I5R/"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Mailing List",
              "Third Party Advisory"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Third Party Advisory"
            ],
            "url": "https://security.gentoo.org/glsa/202311-01"
          },
          {
            "source": "report@snyk.io",
            "tags": [
              "Exploit",
              "Third Party Advisory"
            ],
            "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
          }
        ],
        "sourceIdentifier": "report@snyk.io",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-20"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          }
        ]
      }
    }
  }
}

PYSEC-2022-42992

Vulnerability from pysec - Published: 2022-12-06 05:15 - Updated: 2023-05-04 03:49

Details

Impacted products

Name	purl
gitpython	pkg:pypi/gitpython

Aliases

CVE-2022-24439

JSON

To clipboard

{
  "affected": [
    {
      "package": {
        "ecosystem": "PyPI",
        "name": "gitpython",
        "purl": "pkg:pypi/gitpython"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "fixed": "3.1.30"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ],
      "versions": [
        "0.1.7",
        "0.2.0-beta1",
        "0.3.0-beta1",
        "0.3.0-beta2",
        "0.3.1-beta2",
        "0.3.2",
        "0.3.2.1",
        "0.3.2.RC1",
        "0.3.3",
        "0.3.4",
        "0.3.5",
        "0.3.6",
        "0.3.7",
        "1.0.0",
        "1.0.1",
        "1.0.2",
        "2.0.0",
        "2.0.1",
        "2.0.2",
        "2.0.3",
        "2.0.4",
        "2.0.5",
        "2.0.6",
        "2.0.7",
        "2.0.8",
        "2.0.9",
        "2.0.9.dev0",
        "2.0.9.dev1",
        "2.1.0",
        "2.1.1",
        "2.1.10",
        "2.1.11",
        "2.1.12",
        "2.1.13",
        "2.1.14",
        "2.1.15",
        "2.1.2",
        "2.1.3",
        "2.1.4",
        "2.1.5",
        "2.1.6",
        "2.1.7",
        "2.1.8",
        "2.1.9",
        "3.0.0",
        "3.0.1",
        "3.0.2",
        "3.0.3",
        "3.0.4",
        "3.0.5",
        "3.0.6",
        "3.0.7",
        "3.0.8",
        "3.0.9",
        "3.1.0",
        "3.1.1",
        "3.1.10",
        "3.1.11",
        "3.1.12",
        "3.1.13",
        "3.1.14",
        "3.1.15",
        "3.1.16",
        "3.1.17",
        "3.1.18",
        "3.1.19",
        "3.1.2",
        "3.1.20",
        "3.1.22",
        "3.1.23",
        "3.1.24",
        "3.1.25",
        "3.1.26",
        "3.1.27",
        "3.1.28",
        "3.1.29",
        "3.1.3",
        "3.1.4",
        "3.1.5",
        "3.1.6",
        "3.1.7",
        "3.1.8",
        "3.1.9"
      ]
    }
  ],
  "aliases": [
    "CVE-2022-24439"
  ],
  "details": "All versions of package gitpython are vulnerable to Remote Code Execution (RCE) due to improper user input validation, which makes it possible to inject a maliciously crafted remote URL into the clone command. Exploiting this vulnerability is possible because the library makes external calls to git without sufficient sanitization of input arguments.",
  "id": "PYSEC-2022-42992",
  "modified": "2023-05-04T03:49:45.777062Z",
  "published": "2022-12-06T05:15:00Z",
  "references": [
    {
      "type": "EVIDENCE",
      "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
    },
    {
      "type": "WEB",
      "url": "https://security.snyk.io/vuln/SNYK-PYTHON-GITPYTHON-3113858"
    },
    {
      "type": "WEB",
      "url": "https://github.com/gitpython-developers/GitPython/blob/bec61576ae75803bc4e60d8de7a629c194313d1c/git/repo/base.py%23L1249"
    },
    {
      "type": "ARTICLE",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/IKMVYKLWX62UEYKAN64RUZMOIAMZM5JN/"
    },
    {
      "type": "ARTICLE",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/"
    },
    {
      "type": "WEB",
      "url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/SJHN3QUXPJIMM6SULIR3PR34UFWRAE7X/"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2022-24439 (GCVE-0-2022-24439)

Tags

Sightings

Nomenclature