Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-4380 (GCVE-0-2023-4380)
Vulnerability from cvelistv5 – Published: 2023-10-04 14:24 – Updated: 2025-11-20 18:27
VLAI?
EPSS
Summary
A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.
Severity ?
6.3 (Medium)
CWE
- CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
Impacted products
| Vendor | Product | Version | |||||||
|---|---|---|---|---|---|---|---|---|---|
| Red Hat | Red Hat Ansible Automation Platform 2.4 for RHEL 8 |
Unaffected:
0:1.0.1-1.el8ap , < *
(rpm)
cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9 cpe:/a:redhat:ansible_automation_platform:2.4::el8 cpe:/a:redhat:ansible_automation_platform:2.4::el9 cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8 cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8 |
|||||||
|
|||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T07:24:04.616Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2023:4693",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"name": "RHBZ#2232324",
"tags": [
"issue-tracking",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8"
],
"defaultStatus": "affected",
"packageName": "automation-eda-controller",
"product": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-1.el8ap",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform:2.4::el9",
"cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8",
"cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8"
],
"defaultStatus": "affected",
"packageName": "automation-eda-controller",
"product": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-1.el9ap",
"versionType": "rpm"
}
]
}
],
"datePublic": "2023-08-16T10:05:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-11-20T18:27:32.482Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2023:4693",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"name": "RHBZ#2232324",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
],
"timeline": [
{
"lang": "en",
"time": "2023-08-16T00:00:00+00:00",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2023-08-16T10:05:00+00:00",
"value": "Made public."
}
],
"title": "Platform: token exposed at importing project",
"x_redhatCweChain": "CWE-532: Insertion of Sensitive Information into Log File"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2023-4380",
"datePublished": "2023-10-04T14:24:35.121Z",
"dateReserved": "2023-08-16T10:02:36.139Z",
"dateUpdated": "2025-11-20T18:27:32.482Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:ansible_automation_platform:2.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05986E3C-7E5B-45C1-81B0-9D856A8FF1CC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:ansible_developer:1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CEE40363-D286-4EB7-80D2-17CF3B606AD6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:ansible_inside:1.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"897AB7AC-52B1-4335-97D5-D5EA2FF09CC6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4CFF558-3C47-480D-A2F0-BABF26042943\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.\"}, {\"lang\": \"es\", \"value\": \"Existe un defecto l\\u00f3gico en Ansible. Siempre que se crea un proyecto privado con credenciales incorrectas, se registra en texto plano. Esta falla permite que un atacante recupere las credenciales del registro, lo que resulta en la p\\u00e9rdida de confidencialidad, integridad y disponibilidad.\"}]",
"id": "CVE-2023-4380",
"lastModified": "2024-11-21T08:34:58.260",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"baseScore\": 6.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"baseScore\": 6.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.4}]}",
"published": "2023-10-04T15:15:12.703",
"references": "[{\"url\": \"https://access.redhat.com/errata/RHSA-2023:4693\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-4380\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2232324\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2023:4693\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-4380\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2232324\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-532\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-532\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-4380\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2023-10-04T15:15:12.703\",\"lastModified\":\"2024-11-21T08:34:58.260\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.\"},{\"lang\":\"es\",\"value\":\"Existe un defecto l\u00f3gico en Ansible. Siempre que se crea un proyecto privado con credenciales incorrectas, se registra en texto plano. Esta falla permite que un atacante recupere las credenciales del registro, lo que resulta en la p\u00e9rdida de confidencialidad, integridad y disponibilidad.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":3.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":6.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.8,\"impactScore\":3.4}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_automation_platform:2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05986E3C-7E5B-45C1-81B0-9D856A8FF1CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_developer:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEE40363-D286-4EB7-80D2-17CF3B606AD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_inside:1.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"897AB7AC-52B1-4335-97D5-D5EA2FF09CC6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2023:4693\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-4380\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2232324\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2023:4693\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-4380\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2232324\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]}]}}"
}
}
GHSA-2PFV-Q6J2-PCRF
Vulnerability from github – Published: 2023-10-04 15:30 – Updated: 2024-01-02 00:30
VLAI?
Details
A logic flaw exists in Ansible. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.
Severity ?
6.3 (Medium)
{
"affected": [],
"aliases": [
"CVE-2023-4380"
],
"database_specific": {
"cwe_ids": [
"CWE-532"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-10-04T15:15:12Z",
"severity": "MODERATE"
},
"details": "A logic flaw exists in Ansible. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.",
"id": "GHSA-2pfv-q6j2-pcrf",
"modified": "2024-01-02T00:30:21Z",
"published": "2023-10-04T15:30:35Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4380"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"type": "CVSS_V3"
}
]
}
RHSA-2023:4693
Vulnerability from csaf_redhat - Published: 2023-08-21 21:53 - Updated: 2025-11-21 18:43Summary
Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
Notes
Topic
An update is now available for Red Hat Ansible Automation Platform 2.4
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.
Security Fix(es):
* automation-eda-controller: token exposed at importing project (CVE-2023-4380)
* python3-cryptography/python39-cryptography: memory corruption via immutable objects (CVE-2023-23931)
* python3-django/python39-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator (CVE-2023-36053)
* python3-requests/python39-requests: Unintended leak of Proxy-Authorization header (CVE-2023-32681)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional changes for Event-Driven Ansible:
* automation-eda-controller has been updated to 1.0.1
* Contributor and editor roles now have permissions to access users and set the AWX token. (AAP-11573)
* The onboarding wizard now requests controller token creation. (AAP-11907)
* Corrected the filtering capability of the Rule Audit screens so that a search yields results with the “starts with” function. (AAP-11987)
* Enabling or disabling rulebook activation no longer increases the restarts counter by 1. (AAP-12042)
* Filtering by a text string now displays all applicable items in the UI, including those that are not visible in the list at that time. (AAP-12446)
* Audit records are no longer missing when running activations with multiple jobs. (AAP-12522)
* The event payload is no longer missing key attributes when a job template fails. (AAP-12529)
* Fixed the Git token leak that occurs when importing a project fails. (AAP-12767)
* The restart policy in Kubernetes (k8s) now restarts successful activation that is incorrectly marked as failed. (AAP-12862)
* Activation statuses are now reported correctly, whether you are disabling or enabling them. (AAP-12896)
* When run_job_template action fails now, ansible-rulebook prints an error log in the activation output and creates an entry in rule audit so that the user is alerted that the rule has failed. (AAP-12909)
* When a user tries to bulk delete rulebook activations from the list, the request now completes successfully and consistently. (AAP-13093)
* The Rulebook Activation link now functions correctly in the Rule Audit Detail UI. (AAP-13182)
* Fixed a bug where ansible-rulebook prevented the execution, if the connection with the controller was not successful when controller was not required by the rulebook. (AAP-13209)
* Fixed a bug where some audit rule records had the wrong rulebook link. (AAP-13844)
* Fixed a bug where only the first 10 audit rules had the right link. (AAP-13845)
* Previously project credentials could not be updated if there was a change to the credential used in the project. Now credentials can be updated in a project with a new or different credential. (AAP-13983)
* The User Access section of the navigation panel no longer disappears after creating a decision environment. (AAP-14273)
* Fixed a bug where filtering for audit rules didn't work properly on OpenShift Container Platform. (AAP-14512)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n* automation-eda-controller: token exposed at importing project (CVE-2023-4380)\n* python3-cryptography/python39-cryptography: memory corruption via immutable objects (CVE-2023-23931)\n* python3-django/python39-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator (CVE-2023-36053)\n* python3-requests/python39-requests: Unintended leak of Proxy-Authorization header (CVE-2023-32681)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional changes for Event-Driven Ansible:\n* automation-eda-controller has been updated to 1.0.1\n* Contributor and editor roles now have permissions to access users and set the AWX token. (AAP-11573)\n* The onboarding wizard now requests controller token creation. (AAP-11907)\n* Corrected the filtering capability of the Rule Audit screens so that a search yields results with the \u201cstarts with\u201d function. (AAP-11987)\n* Enabling or disabling rulebook activation no longer increases the restarts counter by 1. (AAP-12042)\n* Filtering by a text string now displays all applicable items in the UI, including those that are not visible in the list at that time. (AAP-12446)\n* Audit records are no longer missing when running activations with multiple jobs. (AAP-12522)\n* The event payload is no longer missing key attributes when a job template fails. (AAP-12529)\n* Fixed the Git token leak that occurs when importing a project fails. (AAP-12767)\n* The restart policy in Kubernetes (k8s) now restarts successful activation that is incorrectly marked as failed. (AAP-12862)\n* Activation statuses are now reported correctly, whether you are disabling or enabling them. (AAP-12896)\n* When run_job_template action fails now, ansible-rulebook prints an error log in the activation output and creates an entry in rule audit so that the user is alerted that the rule has failed. (AAP-12909)\n* When a user tries to bulk delete rulebook activations from the list, the request now completes successfully and consistently. (AAP-13093)\n* The Rulebook Activation link now functions correctly in the Rule Audit Detail UI. (AAP-13182)\n* Fixed a bug where ansible-rulebook prevented the execution, if the connection with the controller was not successful when controller was not required by the rulebook. (AAP-13209)\n* Fixed a bug where some audit rule records had the wrong rulebook link. (AAP-13844)\n* Fixed a bug where only the first 10 audit rules had the right link. (AAP-13845)\n* Previously project credentials could not be updated if there was a change to the credential used in the project. Now credentials can be updated in a project with a new or different credential. (AAP-13983)\n* The User Access section of the navigation panel no longer disappears after creating a decision environment. (AAP-14273)\n* Fixed a bug where filtering for audit rules didn\u0027t work properly on OpenShift Container Platform. (AAP-14512)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:4693",
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2171817",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171817"
},
{
"category": "external",
"summary": "2209469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2209469"
},
{
"category": "external",
"summary": "2218004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
},
{
"category": "external",
"summary": "2232324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4693.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update",
"tracking": {
"current_release_date": "2025-11-21T18:43:43+00:00",
"generator": {
"date": "2025-11-21T18:43:43+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2023:4693",
"initial_release_date": "2023-08-21T21:53:41+00:00",
"revision_history": [
{
"date": "2023-08-21T21:53:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-08-29T18:14:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:43:43+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ansible Automation Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-requests-0:2.31.0-1.el8ap.noarch",
"product": {
"name": "python39-requests-0:2.31.0-1.el8ap.noarch",
"product_id": "python39-requests-0:2.31.0-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-requests@2.31.0-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python39-django-0:3.2.20-1.el8ap.noarch",
"product": {
"name": "python39-django-0:3.2.20-1.el8ap.noarch",
"product_id": "python39-django-0:3.2.20-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-django@3.2.20-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"product": {
"name": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"product_id": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-rsa@4.7.2-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"product_id": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"product": {
"name": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"product_id": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-server@1.0.1-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"product": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"product_id": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-ui@1.0.1-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-requests-0:2.31.0-1.el9ap.noarch",
"product": {
"name": "python3-requests-0:2.31.0-1.el9ap.noarch",
"product_id": "python3-requests-0:2.31.0-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-requests@2.31.0-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-django-0:3.2.20-1.el9ap.noarch",
"product": {
"name": "python3-django-0:3.2.20-1.el9ap.noarch",
"product_id": "python3-django-0:3.2.20-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-django@3.2.20-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"product": {
"name": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"product_id": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-rsa@4.7.2-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"product_id": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"product_id": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-server@1.0.1-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"product_id": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-ui@1.0.1-1.el9ap?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "python3x-requests-0:2.31.0-1.el8ap.src",
"product": {
"name": "python3x-requests-0:2.31.0-1.el8ap.src",
"product_id": "python3x-requests-0:2.31.0-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-requests@2.31.0-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3x-django-0:3.2.20-1.el8ap.src",
"product": {
"name": "python3x-django-0:3.2.20-1.el8ap.src",
"product_id": "python3x-django-0:3.2.20-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-django@3.2.20-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3x-rsa-0:4.7.2-1.el8ap.src",
"product": {
"name": "python3x-rsa-0:4.7.2-1.el8ap.src",
"product_id": "python3x-rsa-0:4.7.2-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-rsa@4.7.2-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"product": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"product_id": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography@38.0.4-2.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"product_id": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-requests-0:2.31.0-1.el9ap.src",
"product": {
"name": "python-requests-0:2.31.0-1.el9ap.src",
"product_id": "python-requests-0:2.31.0-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-requests@2.31.0-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-django-0:3.2.20-1.el9ap.src",
"product": {
"name": "python-django-0:3.2.20-1.el9ap.src",
"product_id": "python-django-0:3.2.20-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-django@3.2.20-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-rsa-0:4.7.2-1.el9ap.src",
"product": {
"name": "python-rsa-0:4.7.2-1.el9ap.src",
"product_id": "python-rsa-0:4.7.2-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-rsa@4.7.2-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-0:38.0.4-2.el9ap.src",
"product": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src",
"product_id": "python-cryptography-0:38.0.4-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography@38.0.4-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"product_id": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el9ap?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src"
},
"product_reference": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src"
},
"product_reference": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch"
},
"product_reference": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch"
},
"product_reference": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-django-0:3.2.20-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch"
},
"product_reference": "python39-django-0:3.2.20-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-requests-0:2.31.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch"
},
"product_reference": "python39-requests-0:2.31.0-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-rsa-0:4.7.2-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch"
},
"product_reference": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src"
},
"product_reference": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-django-0:3.2.20-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src"
},
"product_reference": "python3x-django-0:3.2.20-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-requests-0:2.31.0-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
},
"product_reference": "python3x-requests-0:2.31.0-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-rsa-0:4.7.2-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src"
},
"product_reference": "python3x-rsa-0:4.7.2-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src"
},
"product_reference": "python-cryptography-0:38.0.4-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src"
},
"product_reference": "python-cryptography-0:38.0.4-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src"
},
"product_reference": "python-cryptography-0:38.0.4-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-django-0:3.2.20-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src"
},
"product_reference": "python-django-0:3.2.20-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-requests-0:2.31.0-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src"
},
"product_reference": "python-requests-0:2.31.0-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-rsa-0:4.7.2-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src"
},
"product_reference": "python-rsa-0:4.7.2-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-django-0:3.2.20-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
},
"product_reference": "python3-django-0:3.2.20-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-requests-0:2.31.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch"
},
"product_reference": "python3-requests-0:2.31.0-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rsa-0:4.7.2-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
},
"product_reference": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-4380",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2023-08-16T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2232324"
}
],
"notes": [
{
"category": "description",
"text": "A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "platform: token exposed at importing project",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"category": "external",
"summary": "RHBZ#2232324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-4380",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4380"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-4380",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4380"
}
],
"release_date": "2023-08-16T10:05:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "platform: token exposed at importing project"
},
{
"cve": "CVE-2023-23931",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"discovery_date": "2023-02-08T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2171817"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in python-cryptography. In affected versions, `Cipher.update_into` would accept Python objects which implement the buffer protocol but provide only immutable buffers. This issue allows immutable objects (such as `bytes`) to be mutated, thus violating the fundamental rules of Python, resulting in corrupted output.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-cryptography: memory corruption via immutable objects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-23931"
},
{
"category": "external",
"summary": "RHBZ#2171817",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171817"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-23931",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23931"
},
{
"category": "external",
"summary": "https://github.com/pyca/cryptography/security/advisories/GHSA-w7pp-m8wf-vj6r",
"url": "https://github.com/pyca/cryptography/security/advisories/GHSA-w7pp-m8wf-vj6r"
}
],
"release_date": "2023-02-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-cryptography: memory corruption via immutable objects"
},
{
"cve": "CVE-2023-32681",
"cwe": {
"id": "CWE-402",
"name": "Transmission of Private Resources into a New Sphere (\u0027Resource Leak\u0027)"
},
"discovery_date": "2023-05-24T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2209469"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuild_proxies is used to recompute and reattach the Proxy-Authorization header to requests when redirected. This behavior only affects proxied requests when credentials are supplied in the URL user information component (for example, https://username:password@proxy:8080).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-requests: Unintended leak of Proxy-Authorization header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-32681"
},
{
"category": "external",
"summary": "RHBZ#2209469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2209469"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-32681",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32681"
},
{
"category": "external",
"summary": "https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q",
"url": "https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q"
}
],
"release_date": "2023-05-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"category": "workaround",
"details": "For users who are not able to update Requests immediately, there is one potential workaround.\n\nYou may disable redirects by setting allow_redirects to False on all calls through Requests top-level APIs. Note that if you are currently relying on redirect behaviors, you will need to capture the 3xx response codes and ensure a new request is made to the redirect destination.\n\nimport requests\nr = requests.get(\u0027http://github.com/\u0027, allow_redirects=False)",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-requests: Unintended leak of Proxy-Authorization header"
},
{
"cve": "CVE-2023-36053",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2023-06-27T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2218004"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service vulnerability has been found in Django. Email and URL validators are vulnerable to this flaw when processing a very large number of domain name labels of emails and URLs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-36053"
},
{
"category": "external",
"summary": "RHBZ#2218004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-36053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36053"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/",
"url": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/"
}
],
"release_date": "2023-07-03T08:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator"
}
]
}
RHSA-2023_4693
Vulnerability from csaf_redhat - Published: 2023-08-21 21:53 - Updated: 2024-11-23 00:12Summary
Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update
Notes
Topic
An update is now available for Red Hat Ansible Automation Platform 2.4
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.
Security Fix(es):
* automation-eda-controller: token exposed at importing project (CVE-2023-4380)
* python3-cryptography/python39-cryptography: memory corruption via immutable objects (CVE-2023-23931)
* python3-django/python39-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator (CVE-2023-36053)
* python3-requests/python39-requests: Unintended leak of Proxy-Authorization header (CVE-2023-32681)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Additional changes for Event-Driven Ansible:
* automation-eda-controller has been updated to 1.0.1
* Contributor and editor roles now have permissions to access users and set the AWX token. (AAP-11573)
* The onboarding wizard now requests controller token creation. (AAP-11907)
* Corrected the filtering capability of the Rule Audit screens so that a search yields results with the “starts with” function. (AAP-11987)
* Enabling or disabling rulebook activation no longer increases the restarts counter by 1. (AAP-12042)
* Filtering by a text string now displays all applicable items in the UI, including those that are not visible in the list at that time. (AAP-12446)
* Audit records are no longer missing when running activations with multiple jobs. (AAP-12522)
* The event payload is no longer missing key attributes when a job template fails. (AAP-12529)
* Fixed the Git token leak that occurs when importing a project fails. (AAP-12767)
* The restart policy in Kubernetes (k8s) now restarts successful activation that is incorrectly marked as failed. (AAP-12862)
* Activation statuses are now reported correctly, whether you are disabling or enabling them. (AAP-12896)
* When run_job_template action fails now, ansible-rulebook prints an error log in the activation output and creates an entry in rule audit so that the user is alerted that the rule has failed. (AAP-12909)
* When a user tries to bulk delete rulebook activations from the list, the request now completes successfully and consistently. (AAP-13093)
* The Rulebook Activation link now functions correctly in the Rule Audit Detail UI. (AAP-13182)
* Fixed a bug where ansible-rulebook prevented the execution, if the connection with the controller was not successful when controller was not required by the rulebook. (AAP-13209)
* Fixed a bug where some audit rule records had the wrong rulebook link. (AAP-13844)
* Fixed a bug where only the first 10 audit rules had the right link. (AAP-13845)
* Previously project credentials could not be updated if there was a change to the credential used in the project. Now credentials can be updated in a project with a new or different credential. (AAP-13983)
* The User Access section of the navigation panel no longer disappears after creating a decision environment. (AAP-14273)
* Fixed a bug where filtering for audit rules didn't work properly on OpenShift Container Platform. (AAP-14512)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n* automation-eda-controller: token exposed at importing project (CVE-2023-4380)\n* python3-cryptography/python39-cryptography: memory corruption via immutable objects (CVE-2023-23931)\n* python3-django/python39-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator (CVE-2023-36053)\n* python3-requests/python39-requests: Unintended leak of Proxy-Authorization header (CVE-2023-32681)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional changes for Event-Driven Ansible:\n* automation-eda-controller has been updated to 1.0.1\n* Contributor and editor roles now have permissions to access users and set the AWX token. (AAP-11573)\n* The onboarding wizard now requests controller token creation. (AAP-11907)\n* Corrected the filtering capability of the Rule Audit screens so that a search yields results with the \u201cstarts with\u201d function. (AAP-11987)\n* Enabling or disabling rulebook activation no longer increases the restarts counter by 1. (AAP-12042)\n* Filtering by a text string now displays all applicable items in the UI, including those that are not visible in the list at that time. (AAP-12446)\n* Audit records are no longer missing when running activations with multiple jobs. (AAP-12522)\n* The event payload is no longer missing key attributes when a job template fails. (AAP-12529)\n* Fixed the Git token leak that occurs when importing a project fails. (AAP-12767)\n* The restart policy in Kubernetes (k8s) now restarts successful activation that is incorrectly marked as failed. (AAP-12862)\n* Activation statuses are now reported correctly, whether you are disabling or enabling them. (AAP-12896)\n* When run_job_template action fails now, ansible-rulebook prints an error log in the activation output and creates an entry in rule audit so that the user is alerted that the rule has failed. (AAP-12909)\n* When a user tries to bulk delete rulebook activations from the list, the request now completes successfully and consistently. (AAP-13093)\n* The Rulebook Activation link now functions correctly in the Rule Audit Detail UI. (AAP-13182)\n* Fixed a bug where ansible-rulebook prevented the execution, if the connection with the controller was not successful when controller was not required by the rulebook. (AAP-13209)\n* Fixed a bug where some audit rule records had the wrong rulebook link. (AAP-13844)\n* Fixed a bug where only the first 10 audit rules had the right link. (AAP-13845)\n* Previously project credentials could not be updated if there was a change to the credential used in the project. Now credentials can be updated in a project with a new or different credential. (AAP-13983)\n* The User Access section of the navigation panel no longer disappears after creating a decision environment. (AAP-14273)\n* Fixed a bug where filtering for audit rules didn\u0027t work properly on OpenShift Container Platform. (AAP-14512)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:4693",
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2171817",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171817"
},
{
"category": "external",
"summary": "2209469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2209469"
},
{
"category": "external",
"summary": "2218004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
},
{
"category": "external",
"summary": "2232324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_4693.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update",
"tracking": {
"current_release_date": "2024-11-23T00:12:56+00:00",
"generator": {
"date": "2024-11-23T00:12:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2023:4693",
"initial_release_date": "2023-08-21T21:53:41+00:00",
"revision_history": [
{
"date": "2023-08-21T21:53:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-08-29T18:14:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-23T00:12:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:2.4::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9"
}
}
},
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product": {
"name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ansible Automation Platform"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-requests-0:2.31.0-1.el8ap.noarch",
"product": {
"name": "python39-requests-0:2.31.0-1.el8ap.noarch",
"product_id": "python39-requests-0:2.31.0-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-requests@2.31.0-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python39-django-0:3.2.20-1.el8ap.noarch",
"product": {
"name": "python39-django-0:3.2.20-1.el8ap.noarch",
"product_id": "python39-django-0:3.2.20-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-django@3.2.20-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"product": {
"name": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"product_id": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-rsa@4.7.2-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"product_id": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"product": {
"name": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"product_id": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-server@1.0.1-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"product": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"product_id": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-ui@1.0.1-1.el8ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-requests-0:2.31.0-1.el9ap.noarch",
"product": {
"name": "python3-requests-0:2.31.0-1.el9ap.noarch",
"product_id": "python3-requests-0:2.31.0-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-requests@2.31.0-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-django-0:3.2.20-1.el9ap.noarch",
"product": {
"name": "python3-django-0:3.2.20-1.el9ap.noarch",
"product_id": "python3-django-0:3.2.20-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-django@3.2.20-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"product": {
"name": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"product_id": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-rsa@4.7.2-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"product_id": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"product_id": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-server@1.0.1-1.el9ap?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"product": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"product_id": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller-ui@1.0.1-1.el9ap?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "python3x-requests-0:2.31.0-1.el8ap.src",
"product": {
"name": "python3x-requests-0:2.31.0-1.el8ap.src",
"product_id": "python3x-requests-0:2.31.0-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-requests@2.31.0-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3x-django-0:3.2.20-1.el8ap.src",
"product": {
"name": "python3x-django-0:3.2.20-1.el8ap.src",
"product_id": "python3x-django-0:3.2.20-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-django@3.2.20-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3x-rsa-0:4.7.2-1.el8ap.src",
"product": {
"name": "python3x-rsa-0:4.7.2-1.el8ap.src",
"product_id": "python3x-rsa-0:4.7.2-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-rsa@4.7.2-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"product": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"product_id": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography@38.0.4-2.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"product_id": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el8ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-requests-0:2.31.0-1.el9ap.src",
"product": {
"name": "python-requests-0:2.31.0-1.el9ap.src",
"product_id": "python-requests-0:2.31.0-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-requests@2.31.0-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-django-0:3.2.20-1.el9ap.src",
"product": {
"name": "python-django-0:3.2.20-1.el9ap.src",
"product_id": "python-django-0:3.2.20-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-django@3.2.20-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-rsa-0:4.7.2-1.el9ap.src",
"product": {
"name": "python-rsa-0:4.7.2-1.el9ap.src",
"product_id": "python-rsa-0:4.7.2-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-rsa@4.7.2-1.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-0:38.0.4-2.el9ap.src",
"product": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src",
"product_id": "python-cryptography-0:38.0.4-2.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography@38.0.4-2.el9ap?arch=src"
}
}
},
{
"category": "product_version",
"name": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"product": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"product_id": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/automation-eda-controller@1.0.1-1.el9ap?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"product": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"product_id": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography@38.0.4-2.el8ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"product": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"product_id": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3x-cryptography-debugsource@38.0.4-2.el8ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"product": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"product_id": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python39-cryptography-debuginfo@38.0.4-2.el8ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"product": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"product_id": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography@38.0.4-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"product": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"product_id": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-cryptography-debugsource@38.0.4-2.el9ap?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"product": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"product_id": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-cryptography-debuginfo@38.0.4-2.el9ap?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src"
},
"product_reference": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src"
},
"product_reference": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch"
},
"product_reference": "automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch"
},
"product_reference": "automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-django-0:3.2.20-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch"
},
"product_reference": "python39-django-0:3.2.20-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-requests-0:2.31.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch"
},
"product_reference": "python39-requests-0:2.31.0-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-rsa-0:4.7.2-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch"
},
"product_reference": "python39-rsa-0:4.7.2-1.el8ap.noarch",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-0:38.0.4-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src"
},
"product_reference": "python3x-cryptography-0:38.0.4-2.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64"
},
"product_reference": "python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-django-0:3.2.20-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src"
},
"product_reference": "python3x-django-0:3.2.20-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-requests-0:2.31.0-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
},
"product_reference": "python3x-requests-0:2.31.0-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3x-rsa-0:4.7.2-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"product_id": "8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src"
},
"product_reference": "python3x-rsa-0:4.7.2-1.el8ap.src",
"relates_to_product_reference": "8Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src"
},
"product_reference": "python-cryptography-0:38.0.4-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Developer-1.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src"
},
"product_reference": "python-cryptography-0:38.0.4-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4-Inside-1.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-0:1.0.1-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src"
},
"product_reference": "automation-eda-controller-0:1.0.1-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
},
"product_reference": "automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-0:38.0.4-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src"
},
"product_reference": "python-cryptography-0:38.0.4-2.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-django-0:3.2.20-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src"
},
"product_reference": "python-django-0:3.2.20-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-requests-0:2.31.0-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src"
},
"product_reference": "python-requests-0:2.31.0-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-rsa-0:4.7.2-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src"
},
"product_reference": "python-rsa-0:4.7.2-1.el9ap.src",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
},
"product_reference": "python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-django-0:3.2.20-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
},
"product_reference": "python3-django-0:3.2.20-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-requests-0:2.31.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch"
},
"product_reference": "python3-requests-0:2.31.0-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-rsa-0:4.7.2-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"product_id": "9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
},
"product_reference": "python3-rsa-0:4.7.2-1.el9ap.noarch",
"relates_to_product_reference": "9Base-Ansible-Automation-Platform-2.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-4380",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2023-08-16T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2232324"
}
],
"notes": [
{
"category": "description",
"text": "A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "platform: token exposed at importing project",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"category": "external",
"summary": "RHBZ#2232324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-4380",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4380"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-4380",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-4380"
}
],
"release_date": "2023-08-16T10:05:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "platform: token exposed at importing project"
},
{
"cve": "CVE-2023-23931",
"cwe": {
"id": "CWE-754",
"name": "Improper Check for Unusual or Exceptional Conditions"
},
"discovery_date": "2023-02-08T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2171817"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in python-cryptography. In affected versions, `Cipher.update_into` would accept Python objects which implement the buffer protocol but provide only immutable buffers. This issue allows immutable objects (such as `bytes`) to be mutated, thus violating the fundamental rules of Python, resulting in corrupted output.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-cryptography: memory corruption via immutable objects",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-23931"
},
{
"category": "external",
"summary": "RHBZ#2171817",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2171817"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-23931",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-23931"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-23931",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-23931"
},
{
"category": "external",
"summary": "https://github.com/pyca/cryptography/security/advisories/GHSA-w7pp-m8wf-vj6r",
"url": "https://github.com/pyca/cryptography/security/advisories/GHSA-w7pp-m8wf-vj6r"
}
],
"release_date": "2023-02-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-cryptography: memory corruption via immutable objects"
},
{
"cve": "CVE-2023-32681",
"cwe": {
"id": "CWE-402",
"name": "Transmission of Private Resources into a New Sphere (\u0027Resource Leak\u0027)"
},
"discovery_date": "2023-05-24T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2209469"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Python-requests package, where it is vulnerable to potentially leaking Proxy-Authorization headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how rebuild_proxies is used to recompute and reattach the Proxy-Authorization header to requests when redirected. This behavior only affects proxied requests when credentials are supplied in the URL user information component (for example, https://username:password@proxy:8080).",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-requests: Unintended leak of Proxy-Authorization header",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-32681"
},
{
"category": "external",
"summary": "RHBZ#2209469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2209469"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-32681",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-32681"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-32681",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-32681"
},
{
"category": "external",
"summary": "https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q",
"url": "https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q"
}
],
"release_date": "2023-05-23T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"category": "workaround",
"details": "For users who are not able to update Requests immediately, there is one potential workaround.\n\nYou may disable redirects by setting allow_redirects to False on all calls through Requests top-level APIs. Note that if you are currently relying on redirect behaviors, you will need to capture the 3xx response codes and ensure a new request is made to the redirect destination.\n\nimport requests\nr = requests.get(\u0027http://github.com/\u0027, allow_redirects=False)",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-requests: Unintended leak of Proxy-Authorization header"
},
{
"cve": "CVE-2023-36053",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"discovery_date": "2023-06-27T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2218004"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service vulnerability has been found in Django. Email and URL validators are vulnerable to this flaw when processing a very large number of domain name labels of emails and URLs.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
],
"known_not_affected": [
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python39-cryptography-debuginfo-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python39-requests-0:2.31.0-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python39-rsa-0:4.7.2-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-0:38.0.4-2.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.aarch64",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.ppc64le",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.s390x",
"8Base-Ansible-Automation-Platform-2.4:python3x-cryptography-debugsource-0:38.0.4-2.el8ap.x86_64",
"8Base-Ansible-Automation-Platform-2.4:python3x-requests-0:2.31.0-1.el8ap.src",
"8Base-Ansible-Automation-Platform-2.4:python3x-rsa-0:4.7.2-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-0:1.0.1-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-server-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:automation-eda-controller-ui-0:1.0.1-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-0:38.0.4-2.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python-cryptography-debugsource-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python-requests-0:2.31.0-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-rsa-0:4.7.2-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.aarch64",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.ppc64le",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.s390x",
"9Base-Ansible-Automation-Platform-2.4:python3-cryptography-debuginfo-0:38.0.4-2.el9ap.x86_64",
"9Base-Ansible-Automation-Platform-2.4:python3-requests-0:2.31.0-1.el9ap.noarch",
"9Base-Ansible-Automation-Platform-2.4:python3-rsa-0:4.7.2-1.el9ap.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-36053"
},
{
"category": "external",
"summary": "RHBZ#2218004",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218004"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-36053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36053"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-36053"
},
{
"category": "external",
"summary": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/",
"url": "https://www.djangoproject.com/weblog/2023/jul/03/security-releases/"
}
],
"release_date": "2023-07-03T08:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-08-21T21:53:41+00:00",
"details": "Red Hat Ansible Automation Platform",
"product_ids": [
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-Ansible-Automation-Platform-2.4:python39-django-0:3.2.20-1.el8ap.noarch",
"8Base-Ansible-Automation-Platform-2.4:python3x-django-0:3.2.20-1.el8ap.src",
"9Base-Ansible-Automation-Platform-2.4:python-django-0:3.2.20-1.el9ap.src",
"9Base-Ansible-Automation-Platform-2.4:python3-django-0:3.2.20-1.el9ap.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "python-django: Potential regular expression denial of service vulnerability in EmailValidator/URLValidator"
}
]
}
WID-SEC-W-2023-2082
Vulnerability from csaf_certbund - Published: 2023-08-16 22:00 - Updated: 2023-08-21 22:00Summary
Red Hat Ansible Automation Platform: Schwachstelle ermöglicht Offenlegung von Informationen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Ansible Automation Platform ist eine End-to-End-Automatisierungsplattform für die Konfiguration von Systemen, die Bereitstellung von Software und die Orchestrierung fortschrittlicher Workflows. Sie umfasst Ressourcen zur Erstellung, Verwaltung und Skalierung für das gesamte Unternehmen.
Angriff
Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Red Hat Ansible Automation Platform ausnutzen, um Informationen offenzulegen.
Betroffene Betriebssysteme
- Linux
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Ansible Automation Platform ist eine End-to-End-Automatisierungsplattform f\u00fcr die Konfiguration von Systemen, die Bereitstellung von Software und die Orchestrierung fortschrittlicher Workflows. Sie umfasst Ressourcen zur Erstellung, Verwaltung und Skalierung f\u00fcr das gesamte Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, authentisierter Angreifer kann eine Schwachstelle in Red Hat Ansible Automation Platform ausnutzen, um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-2082 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2082.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-2082 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2082"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:4693 vom 2023-08-22",
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"category": "external",
"summary": "Red Hat Bugzilla \u2013 Bug 2232324 vom 2023-08-16",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
],
"source_lang": "en-US",
"title": "Red Hat Ansible Automation Platform: Schwachstelle erm\u00f6glicht Offenlegung von Informationen",
"tracking": {
"current_release_date": "2023-08-21T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:57:11.667+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-2082",
"initial_release_date": "2023-08-16T22:00:00.000+00:00",
"revision_history": [
{
"date": "2023-08-16T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-08-21T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ansible Automation Platform",
"product": {
"name": "Red Hat Ansible Automation Platform",
"product_id": "T029368",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_automation_platform:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Ansible Automation Platform 2.4",
"product": {
"name": "Red Hat Enterprise Linux Ansible Automation Platform 2.4",
"product_id": "T029430",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:ansible_automation_platform_2.4"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-4380",
"notes": [
{
"category": "description",
"text": "Es besteht eine Schwachstelle in Red Hat Ansible Automation Platform. Diese betrifft die Komponente \"Project Import\" aufgrund eines exponierten Tokens beim Importieren eines Projekts. Ein Angreifer kann diese Schwachstelle ausnutzen, um vertrauliche Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T029430",
"T029368"
]
},
"release_date": "2023-08-16T22:00:00.000+00:00",
"title": "CVE-2023-4380"
}
]
}
GSD-2023-4380
Vulnerability from gsd - Updated: 2023-12-13 01:20Details
A logic flaw exists in Ansible. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2023-4380",
"id": "GSD-2023-4380"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2023-4380"
],
"details": "A logic flaw exists in Ansible. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.",
"id": "GSD-2023-4380",
"modified": "2023-12-13T01:20:27.174885Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2023-4380",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Red Hat Ansible Automation Platform 2.4 for RHEL 8",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-1.el8ap",
"versionType": "rpm"
}
]
}
}
]
}
},
{
"product_name": "Red Hat Ansible Automation Platform 2.4 for RHEL 9",
"version": {
"version_data": [
{
"version_value": "not down converted",
"x_cve_json_5_version_data": {
"defaultStatus": "affected",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:1.0.1-1.el9ap",
"versionType": "rpm"
}
]
}
}
]
}
}
]
},
"vendor_name": "Red Hat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-532",
"lang": "eng",
"value": "Insertion of Sensitive Information into Log File"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://access.redhat.com/errata/RHSA-2023:4693",
"refsource": "MISC",
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"name": "https://access.redhat.com/security/cve/CVE-2023-4380",
"refsource": "MISC",
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
]
}
},
"nvd.nist.gov": {
"cve": {
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:ansible_automation_platform:2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "05986E3C-7E5B-45C1-81B0-9D856A8FF1CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:ansible_developer:1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "CEE40363-D286-4EB7-80D2-17CF3B606AD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:ansible_inside:1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "897AB7AC-52B1-4335-97D5-D5EA2FF09CC6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"descriptions": [
{
"lang": "en",
"value": "A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability."
},
{
"lang": "es",
"value": "Existe un defecto l\u00f3gico en Ansible. Siempre que se crea un proyecto privado con credenciales incorrectas, se registra en texto plano. Esta falla permite que un atacante recupere las credenciales del registro, lo que resulta en la p\u00e9rdida de confidencialidad, integridad y disponibilidad."
}
],
"id": "CVE-2023-4380",
"lastModified": "2024-01-01T23:15:08.460",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4,
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4,
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
},
"published": "2023-10-04T15:15:12.703",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
}
]
}
}
}
}
FKIE_CVE-2023-4380
Vulnerability from fkie_nvd - Published: 2023-10-04 15:15 - Updated: 2024-11-21 08:34
Severity ?
6.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
6.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
6.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Summary
A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability.
References
| URL | Tags | ||
|---|---|---|---|
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2023:4693 | Vendor Advisory | |
| secalert@redhat.com | https://access.redhat.com/security/cve/CVE-2023-4380 | Vendor Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=2232324 | Issue Tracking, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2023:4693 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/security/cve/CVE-2023-4380 | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=2232324 | Issue Tracking, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| redhat | ansible_automation_platform | 2.4 | |
| redhat | ansible_developer | 1.1 | |
| redhat | ansible_inside | 1.2 | |
| redhat | enterprise_linux | 8.0 | |
| redhat | enterprise_linux | 9.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:ansible_automation_platform:2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "05986E3C-7E5B-45C1-81B0-9D856A8FF1CC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:ansible_developer:1.1:*:*:*:*:*:*:*",
"matchCriteriaId": "CEE40363-D286-4EB7-80D2-17CF3B606AD6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:ansible_inside:1.2:*:*:*:*:*:*:*",
"matchCriteriaId": "897AB7AC-52B1-4335-97D5-D5EA2FF09CC6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "F4CFF558-3C47-480D-A2F0-BABF26042943",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "7F6FB57C-2BC7-487C-96DD-132683AEB35D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A logic flaw exists in Ansible Automation platform. Whenever a private project is created with incorrect credentials, they are logged in plaintext. This flaw allows an attacker to retrieve the credentials from the log, resulting in the loss of confidentiality, integrity, and availability."
},
{
"lang": "es",
"value": "Existe un defecto l\u00f3gico en Ansible. Siempre que se crea un proyecto privado con credenciales incorrectas, se registra en texto plano. Esta falla permite que un atacante recupere las credenciales del registro, lo que resulta en la p\u00e9rdida de confidencialidad, integridad y disponibilidad."
}
],
"id": "CVE-2023-4380",
"lastModified": "2024-11-21T08:34:58.260",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"exploitabilityScore": 2.8,
"impactScore": 3.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2023-10-04T15:15:12.703",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2023:4693"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-4380"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Vendor Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2232324"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-532"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…