Action not permitted
Modal body text goes here.
Modal Title
Modal Body
cve-2023-46137
Vulnerability from cvelistv5
▼ | URL | Tags | |
---|---|---|---|
security-advisories@github.com | https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm | Exploit, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm | Exploit, Vendor Advisory |
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-02T20:37:39.805Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, ], title: "CVE Program Container", }, { affected: [ { cpes: [ "cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*", ], defaultStatus: "unknown", product: "twisted", vendor: "twisted", versions: [ { lessThan: "23.8.0", status: "affected", version: "0", versionType: "custom", }, ], }, ], metrics: [ { other: { content: { id: "CVE-2023-46137", options: [ { Exploitation: "none", }, { Automatable: "yes", }, { "Technical Impact": "partial", }, ], role: "CISA Coordinator", timestamp: "2024-09-10T13:57:52.009306Z", version: "2.0.3", }, type: "ssvc", }, }, ], providerMetadata: { dateUpdated: "2024-09-10T14:05:53.980Z", orgId: "134c704f-9b21-4f2e-91b3-4a467353bcc0", shortName: "CISA-ADP", }, title: "CISA ADP Vulnrichment", }, ], cna: { affected: [ { product: "twisted", vendor: "twisted", versions: [ { status: "affected", version: "23.10.0rc1", }, ], }, ], descriptions: [ { lang: "en", value: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", }, ], metrics: [ { cvssV3_1: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, }, ], problemTypes: [ { descriptions: [ { cweId: "CWE-444", description: "CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", lang: "en", type: "CWE", }, ], }, ], providerMetadata: { dateUpdated: "2023-10-25T20:56:27.320Z", orgId: "a0819718-46f1-4df5-94e2-005712e83aaa", shortName: "GitHub_M", }, references: [ { name: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", tags: [ "x_refsource_CONFIRM", ], url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, ], source: { advisory: "GHSA-xc8x-vp79-p3wm", discovery: "UNKNOWN", }, title: "twisted.web has disordered HTTP pipeline response", }, }, cveMetadata: { assignerOrgId: "a0819718-46f1-4df5-94e2-005712e83aaa", assignerShortName: "GitHub_M", cveId: "CVE-2023-46137", datePublished: "2023-10-25T20:56:27.320Z", dateReserved: "2023-10-16T17:51:35.574Z", dateUpdated: "2024-09-10T14:05:53.980Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"22.8.0\", \"matchCriteriaId\": \"1CEAFE1B-0546-4D6D-AAB6-2EE69DEA1353\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.\"}, {\"lang\": \"es\", \"value\": \"Twisted es un framework basado en eventos para aplicaciones de Internet. Antes de la versi\\u00f3n 23.10.0rc1, al enviar m\\u00faltiples solicitudes HTTP en un paquete TCP, twisted.web procesar\\u00e1 las solicitudes de forma asincr\\u00f3nica sin garantizar el orden de respuesta. Si uno de los endpoints est\\u00e1 controlado por un atacante, el atacante puede retrasar la respuesta a prop\\u00f3sito para manipular la respuesta de la segunda solicitud cuando una v\\u00edctima lanz\\u00f3 dos solicitudes utilizando una canalizaci\\u00f3n HTTP. La versi\\u00f3n 23.10.0rc1 contiene un parche para este problema.\"}]", id: "CVE-2023-46137", lastModified: "2024-11-25T18:12:24.673", metrics: "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\", \"baseScore\": 5.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 1.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\", \"baseScore\": 5.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 1.4}]}", published: "2023-10-25T21:15:10.237", references: "[{\"url\": \"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}, {\"url\": \"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Vendor Advisory\"]}]", sourceIdentifier: "security-advisories@github.com", vulnStatus: "Modified", weaknesses: "[{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-444\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-444\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2023-46137\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2023-10-25T21:15:10.237\",\"lastModified\":\"2024-11-25T18:12:24.673\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.\"},{\"lang\":\"es\",\"value\":\"Twisted es un framework basado en eventos para aplicaciones de Internet. Antes de la versión 23.10.0rc1, al enviar múltiples solicitudes HTTP en un paquete TCP, twisted.web procesará las solicitudes de forma asincrónica sin garantizar el orden de respuesta. Si uno de los endpoints está controlado por un atacante, el atacante puede retrasar la respuesta a propósito para manipular la respuesta de la segunda solicitud cuando una víctima lanzó dos solicitudes utilizando una canalización HTTP. La versión 23.10.0rc1 contiene un parche para este problema.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":5.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":3.9,\"impactScore\":1.4}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-444\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-444\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"22.8.0\",\"matchCriteriaId\":\"1CEAFE1B-0546-4D6D-AAB6-2EE69DEA1353\"}]}]}],\"references\":[{\"url\":\"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]},{\"url\":\"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Vendor Advisory\"]}]}}", vulnrichment: { containers: "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\", \"name\": \"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T20:37:39.805Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-46137\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-10T13:57:52.009306Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*\"], \"vendor\": \"twisted\", \"product\": \"twisted\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"23.8.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-10T14:05:49.308Z\"}}], \"cna\": {\"title\": \"twisted.web has disordered HTTP pipeline response\", \"source\": {\"advisory\": \"GHSA-xc8x-vp79-p3wm\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.3, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"NONE\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"twisted\", \"product\": \"twisted\", \"versions\": [{\"status\": \"affected\", \"version\": \"23.10.0rc1\"}]}], \"references\": [{\"url\": \"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\", \"name\": \"https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-444\", \"description\": \"CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2023-10-25T20:56:27.320Z\"}}}", cveMetadata: "{\"cveId\": \"CVE-2023-46137\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-09-10T14:05:53.980Z\", \"dateReserved\": \"2023-10-16T17:51:35.574Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2023-10-25T20:56:27.320Z\", \"assignerShortName\": \"GitHub_M\"}", dataType: "CVE_RECORD", dataVersion: "5.1", }, }, }
RHSA-2024:1640
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* automation-controller: Django: denial-of-service in 'intcomma' template filter (CVE-2024-24680)\n* automation-controller: aiohttp: http request smuggling (CVE-2024-23829)\n* automation-controller: aiohttp: follow_symlinks directory traversal vulnerability (CVE-2024-23334)\n* automation-controller: Jinja2: HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-22195)\n* automation-controller: cryptography: NULL-dereference when loading PKCS7 certificates (CVE-2023-49083)\n* automation-controller: aiohttp: numerous issues in HTTP parser with header parsing (CVE-2023-47627)\n* automation-controller: Twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n* automation-controller: axios: exposure of confidential data stored in cookies (CVE-2023-45857)\n* automation-controller: GitPython: Blind local file inclusion (CVE-2023-41040)\n* python3-aiohttp/python39-aiohttp: http request smuggling (CVE-2024-23829)\n* python3-aiohttp/python39-aiohttp: follow_symlinks directory traversal vulnerability (CVE-2024-23334)\n* python3-django/python39-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words() (CVE-2024-27351)\n* receptor: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n* receptor: golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests (CVE-2023-39326)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nUpdates and fixes for automation controller:\n* Fixed bug where schedule prompted variables and survey answers were reset on edit when changing one of the basic form fields (AAP-20967)\n* Fixed the update execution environment image to no longer fail jobs that use the previous image (AAP-21733)\n* Removed string validation using comparisons of English literals for comparison, replacing validation with error/op codes as a universal approach to validation and comparison (AAP-21721)\n* Fixed dispatcher to appropriately terminate child processes when dispatcher terminates (AAP-21049)\n* Fixed upgrade from Ansible Tower 3.8.6 to AAP 2.4 to no longer fail upon database schema migration (AAP-19738)\n* automation-controller has been updated to 4.5.5\n\nUpdates and fixes for receptor:\n* Fixes a receptor dialing issue where the connection attempt is timed out too aggressively (AAP-21838, AAP-21828)\n* receptor has been updated to 1.4.5\n\nAdditional fixes:\n* ansible-core has been updated to 2.15.10\n* ansible-runner has been updated to 2.3.6\n* python3-aiohttp/python39-aiohttp has been updated to 3.9.3\n* python3-django/python39-django has been updated 4.2.11\n* python3-pulpcore/python39-pulpcore has been updated 3.28.24", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1640", url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "2248979", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2248979", }, { category: "external", summary: "2249825", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2249825", }, { category: "external", summary: "2253330", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2253330", }, { category: "external", summary: "2255331", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2255331", }, { category: "external", summary: "2257854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2257854", }, { category: "external", summary: "2261856", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261856", }, { category: "external", summary: "2261887", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261887", }, { category: "external", summary: "2261909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261909", }, { category: "external", summary: "2262921", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262921", }, { category: "external", summary: "2266045", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2266045", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1640.json", }, ], title: "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update", tracking: { current_release_date: "2025-03-31T10:12:32+00:00", generator: { date: "2025-03-31T10:12:32+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2024:1640", initial_release_date: "2024-04-02T19:34:39+00:00", revision_history: [ { date: "2024-04-02T19:34:39+00:00", number: "1", summary: "Initial version", }, { date: "2024-04-02T19:34:39+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-31T10:12:32+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8", }, }, }, ], category: "product_family", name: "Red Hat Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "python-pulpcore-0:3.28.24-1.el9ap.src", product: { name: "python-pulpcore-0:3.28.24-1.el9ap.src", product_id: "python-pulpcore-0:3.28.24-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pulpcore@3.28.24-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-aiohttp-0:3.9.3-1.el9ap.src", product: { name: "python-aiohttp-0:3.9.3-1.el9ap.src", product_id: "python-aiohttp-0:3.9.3-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp@3.9.3-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-django-0:4.2.11-1.el9ap.src", product: { name: "python-django-0:4.2.11-1.el9ap.src", product_id: "python-django-0:4.2.11-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-django@4.2.11-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el9ap.src", product: { name: "ansible-runner-0:2.3.6-1.el9ap.src", product_id: "ansible-runner-0:2.3.6-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.src", product: { name: "receptor-0:1.4.5-1.el9ap.src", product_id: "receptor-0:1.4.5-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el9ap.src", product: { name: "ansible-core-1:2.15.10-1.el9ap.src", product_id: "ansible-core-1:2.15.10-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el9ap?arch=src&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.src", product: { name: "automation-controller-0:4.5.5-2.el9ap.src", product_id: "automation-controller-0:4.5.5-2.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=src", }, }, }, { category: "product_version", name: "python3x-django-0:4.2.11-1.el8ap.src", product: { name: "python3x-django-0:4.2.11-1.el8ap.src", product_id: "python3x-django-0:4.2.11-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-django@4.2.11-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product: { name: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product_id: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-pulpcore@3.28.24-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product: { name: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product_id: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp@3.9.3-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el8ap.src", product: { name: "ansible-runner-0:2.3.6-1.el8ap.src", product_id: "ansible-runner-0:2.3.6-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.src", product: { name: "receptor-0:1.4.5-1.el8ap.src", product_id: "receptor-0:1.4.5-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el8ap.src", product: { name: "ansible-core-1:2.15.10-1.el8ap.src", product_id: "ansible-core-1:2.15.10-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el8ap?arch=src&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.src", product: { name: "automation-controller-0:4.5.5-2.el8ap.src", product_id: "automation-controller-0:4.5.5-2.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product: { name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product_id: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pulpcore@3.28.24-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-django-0:4.2.11-1.el9ap.noarch", product: { name: "python3-django-0:4.2.11-1.el9ap.noarch", product_id: "python3-django-0:4.2.11-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-django@4.2.11-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el9ap.noarch", product: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch", product_id: "ansible-runner-0:2.3.6-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product_id: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-ansible-runner@2.3.6-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "receptorctl-0:1.4.5-1.el9ap.noarch", product: { name: "receptorctl-0:1.4.5-1.el9ap.noarch", product_id: "receptorctl-0:1.4.5-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/receptorctl@1.4.5-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el9ap.noarch", product: { name: "ansible-core-1:2.15.10-1.el9ap.noarch", product_id: "ansible-core-1:2.15.10-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el9ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "ansible-test-1:2.15.10-1.el9ap.noarch", product: { name: "ansible-test-1:2.15.10-1.el9ap.noarch", product_id: "ansible-test-1:2.15.10-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-test@2.15.10-1.el9ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-cli@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-server@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-ui@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-django-0:4.2.11-1.el8ap.noarch", product: { name: "python39-django-0:4.2.11-1.el8ap.noarch", product_id: "python39-django-0:4.2.11-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-django@4.2.11-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product: { name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product_id: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-pulpcore@3.28.24-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el8ap.noarch", product: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch", product_id: "ansible-runner-0:2.3.6-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product_id: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-ansible-runner@2.3.6-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "receptorctl-0:1.4.5-1.el8ap.noarch", product: { name: "receptorctl-0:1.4.5-1.el8ap.noarch", product_id: "receptorctl-0:1.4.5-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/receptorctl@1.4.5-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el8ap.noarch", product: { name: "ansible-core-1:2.15.10-1.el8ap.noarch", product_id: "ansible-core-1:2.15.10-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el8ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "ansible-test-1:2.15.10-1.el8ap.noarch", product: { name: "ansible-test-1:2.15.10-1.el8ap.noarch", product_id: "ansible-test-1:2.15.10-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-test@2.15.10-1.el8ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-cli@4.5.5-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-server@4.5.5-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-ui@4.5.5-2.el8ap?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.x86_64", product: { name: "receptor-0:1.4.5-1.el9ap.x86_64", product_id: "receptor-0:1.4.5-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.x86_64", product: { name: "automation-controller-0:4.5.5-2.el9ap.x86_64", product_id: "automation-controller-0:4.5.5-2.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.x86_64", product: { name: "receptor-0:1.4.5-1.el8ap.x86_64", product_id: "receptor-0:1.4.5-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.x86_64", product: { name: "automation-controller-0:4.5.5-2.el8ap.x86_64", product_id: "automation-controller-0:4.5.5-2.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.ppc64le", product: { name: "receptor-0:1.4.5-1.el9ap.ppc64le", product_id: "receptor-0:1.4.5-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product: { name: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product_id: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.ppc64le", product: { name: "receptor-0:1.4.5-1.el8ap.ppc64le", product_id: "receptor-0:1.4.5-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product: { name: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product_id: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.s390x", product: { name: "receptor-0:1.4.5-1.el9ap.s390x", product_id: "receptor-0:1.4.5-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.s390x", product: { name: "automation-controller-0:4.5.5-2.el9ap.s390x", product_id: "automation-controller-0:4.5.5-2.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.s390x", product: { name: "receptor-0:1.4.5-1.el8ap.s390x", product_id: "receptor-0:1.4.5-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.s390x", product: { name: "automation-controller-0:4.5.5-2.el8ap.s390x", product_id: "automation-controller-0:4.5.5-2.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.aarch64", product: { name: "receptor-0:1.4.5-1.el9ap.aarch64", product_id: "receptor-0:1.4.5-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.aarch64", product: { name: "automation-controller-0:4.5.5-2.el9ap.aarch64", product_id: "automation-controller-0:4.5.5-2.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.aarch64", product: { name: "receptor-0:1.4.5-1.el8ap.aarch64", product_id: "receptor-0:1.4.5-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.aarch64", product: { name: "automation-controller-0:4.5.5-2.el8ap.aarch64", product_id: "automation-controller-0:4.5.5-2.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-server-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-server-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-django-0:4.2.11-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", }, product_reference: "python39-django-0:4.2.11-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", }, product_reference: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-0:3.9.3-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", }, product_reference: "python3x-aiohttp-0:3.9.3-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-django-0:4.2.11-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", }, product_reference: "python3x-django-0:4.2.11-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-pulpcore-0:3.28.24-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", }, product_reference: "python3x-pulpcore-0:3.28.24-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-server-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-server-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-0:3.9.3-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", }, product_reference: "python-aiohttp-0:3.9.3-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-django-0:4.2.11-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", }, product_reference: "python-django-0:4.2.11-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-pulpcore-0:3.28.24-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", }, product_reference: "python-pulpcore-0:3.28.24-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-django-0:4.2.11-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", }, product_reference: "python3-django-0:4.2.11-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", }, product_reference: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, ], }, vulnerabilities: [ { cve: "CVE-2023-39326", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-12-06T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2253330", }, ], notes: [ { category: "description", text: "A flaw was found in the Golang net/http/internal package. This issue may allow a malicious user to send an HTTP request and cause the receiver to read more bytes from network than are in the body (up to 1GiB), causing the receiver to fail reading the response, possibly leading to a Denial of Service (DoS).", title: "Vulnerability description", }, { category: "summary", text: "golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-39326", }, { category: "external", summary: "RHBZ#2253330", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2253330", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-39326", url: "https://www.cve.org/CVERecord?id=CVE-2023-39326", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-39326", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-39326", }, { category: "external", summary: "https://pkg.go.dev/vuln/GO-2023-2382", url: "https://pkg.go.dev/vuln/GO-2023-2382", }, ], release_date: "2023-12-06T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "No mitigation is available for this flaw.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests", }, { cve: "CVE-2023-41040", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2023-10-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2247040", }, ], notes: [ { category: "description", text: "A path traversal vulnerability was found in GitPython due to an input validation error when reading from the \".git\" directory. This issue may allow a remote attacker to prepare a specially crafted \".git\" file with directory traversal characters in file names and force the application to read these files from the local system, which can result in checking for the existence of a specific file on the system or allow a denial of service (DoS) attack.", title: "Vulnerability description", }, { category: "summary", text: "GitPython: Blind local file inclusion", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability cannot be used to read the contents of files but could be used to trigger a denial of service for the program.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-41040", }, { category: "external", summary: "RHBZ#2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-41040", url: "https://www.cve.org/CVERecord?id=CVE-2023-41040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", }, { category: "external", summary: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", url: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", }, ], release_date: "2023-08-31T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "GitPython: Blind local file inclusion", }, { cve: "CVE-2023-45857", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-11-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2248979", }, ], notes: [ { category: "description", text: "A flaw was found in Axios that may expose a confidential session token. This issue can allow a remote attacker to bypass security measures and view sensitive data.", title: "Vulnerability description", }, { category: "summary", text: "axios: exposure of confidential data stored in cookies", title: "Vulnerability summary", }, { category: "other", text: "For Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected container was deprecated in ACM 2.5 version which is not anymore supported. Following versions of this product are not impacted by this issue.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-45857", }, { category: "external", summary: "RHBZ#2248979", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2248979", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-45857", url: "https://www.cve.org/CVERecord?id=CVE-2023-45857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-45857", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-45857", }, ], release_date: "2023-11-09T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "axios: exposure of confidential data stored in cookies", }, { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, { cve: "CVE-2023-47627", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-11-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2249825", }, ], notes: [ { category: "description", text: "An HTTP request smuggling vulnerability was found in aiohttp. Numerous issues with HTTP parsing can allow an attacker to smuggle HTTP requests.", title: "Vulnerability description", }, { category: "summary", text: "python-aiohttp: numerous issues in HTTP parser with header parsing", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-47627", }, { category: "external", summary: "RHBZ#2249825", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2249825", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-47627", url: "https://www.cve.org/CVERecord?id=CVE-2023-47627", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-47627", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-47627", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-gfw2-4jvh-wgfg", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-gfw2-4jvh-wgfg", }, ], release_date: "2023-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-aiohttp: numerous issues in HTTP parser with header parsing", }, { cve: "CVE-2023-49083", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, discovery_date: "2023-12-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2255331", }, ], notes: [ { category: "description", text: "A null-pointer dereference vulnerability was found in python-cryptography during the loading of PKCS7 certificates. Invoking \"load_pem_pkcs7_certificates\" or \"load_der_pkcs7_certificates\" can trigger this issue and lead to subsequent segmentation fault and result in a Denial of Service (DoS) for any application aiming to deserialize a PKCS7 blob or certificate. The potential impact includes disruptions in system availability and stability.", title: "Vulnerability description", }, { category: "summary", text: "python-cryptography: NULL-dereference when loading PKCS7 certificates", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability arises when functions like \"load_pem_pkcs7_certificates\" or \"load_der_pkcs7_certificates\" are invoked, triggering the issue during the deserialization of PKCS7 blobs or certificates. The moderate rating is based on the fact that the vulnerability can lead to a segmentation fault, posing a risk of disrupting the normal functioning of any application attempting to deserialize the mentioned certificates. While the impact is significant in terms of service denial and potential system instability, the severity is deemed moderate as it does not directly expose sensitive data or allow for remote code execution, focusing primarily on the localized consequences of a DoS scenario.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-49083", }, { category: "external", summary: "RHBZ#2255331", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2255331", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-49083", url: "https://www.cve.org/CVERecord?id=CVE-2023-49083", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-49083", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-49083", }, { category: "external", summary: "https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a", url: "https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a", }, { category: "external", summary: "https://github.com/pyca/cryptography/pull/9926", url: "https://github.com/pyca/cryptography/pull/9926", }, { category: "external", summary: "https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97", url: "https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97", }, ], release_date: "2023-11-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-cryptography: NULL-dereference when loading PKCS7 certificates", }, { acknowledgments: [ { names: [ "@r3kumar", "@qmuntal", ], }, ], cve: "CVE-2024-1394", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-02-06T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2262921", }, ], notes: [ { category: "description", text: "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.", title: "Vulnerability description", }, { category: "summary", text: "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads", title: "Vulnerability summary", }, { category: "other", text: "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1394", }, { category: "external", summary: "RHBZ#2262921", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262921", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1394", url: "https://www.cve.org/CVERecord?id=CVE-2024-1394", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1394", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1394", }, { category: "external", summary: "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136", url: "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136", }, { category: "external", summary: "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6", url: "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6", }, { category: "external", summary: "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f", url: "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f", }, { category: "external", summary: "https://pkg.go.dev/vuln/GO-2024-2660", url: "https://pkg.go.dev/vuln/GO-2024-2660", }, { category: "external", summary: "https://vuln.go.dev/ID/GO-2024-2660.json", url: "https://vuln.go.dev/ID/GO-2024-2660.json", }, ], release_date: "2024-03-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads", }, { cve: "CVE-2024-22195", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2024-01-11T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2257854", }, ], notes: [ { category: "description", text: "A cross-site scripting (XSS) flaw was found in Jinja2 due to the xmlattr filter allowing keys with spaces, contrary to XML/HTML attribute standards. If an application accepts user-input keys and renders them for other users, attackers can inject additional attributes, potentially leading to XSS. This misuse of the xmlattr filter enables the injection of arbitrary HTML attributes, bypassing auto-escaping and potentially circumventing attribute validation checks.", title: "Vulnerability description", }, { category: "summary", text: "jinja2: HTML attribute injection when passing user input as keys to xmlattr filter", title: "Vulnerability summary", }, { category: "other", text: "The identified issue is classified as moderate due to a cross-site scripting (XSS) vulnerability in Jinja2. This flaw arises from the xmlattr filter, which permits keys with spaces, contrary to XML/HTML attribute standards. In scenarios where an application accepts user-input keys and renders them for other users, attackers can exploit this vulnerability to inject additional attributes, potentially resulting in XSS attacks. The misuse of the xmlattr filter facilitates the injection of arbitrary HTML attributes, allowing attackers to bypass auto-escaping mechanisms and potentially evade attribute validation checks, posing a moderate security risk.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-22195", }, { category: "external", summary: "RHBZ#2257854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2257854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-22195", url: "https://www.cve.org/CVERecord?id=CVE-2024-22195", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-22195", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-22195", }, { category: "external", summary: "https://github.com/pallets/jinja/releases/tag/3.1.3", url: "https://github.com/pallets/jinja/releases/tag/3.1.3", }, { category: "external", summary: "https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95", url: "https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95", }, ], release_date: "2024-01-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jinja2: HTML attribute injection when passing user input as keys to xmlattr filter", }, { cve: "CVE-2024-23334", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261887", }, ], notes: [ { category: "description", text: "A flaw was found in aiohttp. When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'follow_symlinks' is set to True, there is no validation to check if a given file path is within the root directory. This issue can lead to a directory traversal vulnerability, resulting in unauthorized access to arbitrary files on the system, even when symlinks are not present.", title: "Vulnerability description", }, { category: "summary", text: "aiohttp: follow_symlinks directory traversal vulnerability", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability has been rated as having a moderate impact. There is a non-default precondition which is required to exploit it: the follow_symlinks setting needs to be enabled.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-23334", }, { category: "external", summary: "RHBZ#2261887", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261887", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-23334", url: "https://www.cve.org/CVERecord?id=CVE-2024-23334", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-23334", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-23334", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-5h86-8mv2-jq9f", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-5h86-8mv2-jq9f", }, ], release_date: "2024-01-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "If using follow_symlinks=True outside of a restricted local development environment, disable the option immediately. This option is NOT needed to follow symlinks that point to a location within the static root directory; it is only intended to allow a symlink to break out of the static directory. Even with this CVE fixed, there is still a substantial risk of misconfiguration when using this option on a server that accepts requests from remote users.\n\nAdditionally, aiohttp has always recommended using a reverse proxy server (such as nginx) to handle static resources and not to use these static resources in aiohttp for production environments. Doing so also protects against this vulnerability, and is why we expect the number of affected users to be very low.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "aiohttp: follow_symlinks directory traversal vulnerability", }, { cve: "CVE-2024-23829", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261909", }, ], notes: [ { category: "description", text: "An HTTP request smuggling vulnerability was found in aiohttp. Security-sensitive parts of the Python HTTP parser retained minor differences in allowable character sets that must trigger error handling to robustly match frame boundaries of proxies in order to protect against the injection of additional requests.", title: "Vulnerability description", }, { category: "summary", text: "python-aiohttp: http request smuggling", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-23829", }, { category: "external", summary: "RHBZ#2261909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261909", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-23829", url: "https://www.cve.org/CVERecord?id=CVE-2024-23829", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-23829", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-23829", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8qpw-xqxj-h4r2", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8qpw-xqxj-h4r2", }, ], release_date: "2024-01-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-aiohttp: http request smuggling", }, { cve: "CVE-2024-24680", discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261856", }, ], notes: [ { category: "description", text: "A vulnerability was found in Django. When used with very long strings, the intcomma template filter was subject to a potential denial of service attack.", title: "Vulnerability description", }, { category: "summary", text: "Django: denial-of-service in ``intcomma`` template filter", title: "Vulnerability summary", }, { category: "other", text: "Redhat has rated this vulnerability as moderate severity because exploitation of this vulnerability is only theoretical in nature and can only result in a denial of service bug.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-24680", }, { category: "external", summary: "RHBZ#2261856", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261856", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-24680", url: "https://www.cve.org/CVERecord?id=CVE-2024-24680", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-24680", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-24680", }, { category: "external", summary: "https://github.com/advisories/GHSA-xxj9-f6rv-m3x4", url: "https://github.com/advisories/GHSA-xxj9-f6rv-m3x4", }, { category: "external", summary: "https://www.djangoproject.com/weblog/2024/feb/06/security-releases/", url: "https://www.djangoproject.com/weblog/2024/feb/06/security-releases/", }, ], release_date: "2024-02-06T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Django: denial-of-service in ``intcomma`` template filter", }, { cve: "CVE-2024-27351", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, discovery_date: "2024-02-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2266045", }, ], notes: [ { category: "description", text: "An inefficient regular expression complexity flaw was found in the Truncator.words function and truncatewords_html filter of Django. This issue may allow an attacker to use a suitably crafted string to cause a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "python-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words()", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-27351", }, { category: "external", summary: "RHBZ#2266045", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2266045", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-27351", url: "https://www.cve.org/CVERecord?id=CVE-2024-27351", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-27351", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-27351", }, { category: "external", summary: "https://www.djangoproject.com/weblog/2024/mar/04/security-releases/", url: "https://www.djangoproject.com/weblog/2024/mar/04/security-releases/", }, ], release_date: "2024-03-04T09:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words()", }, ], }
rhsa-2024_0322
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* python3-gitpython/python39-gitpython: Blind local file inclusion (CVE-2023-41040)\n\n* python3-twisted/python39-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional changes:\n* python3-dynaconf/python39-dynaconf has been updated to 3.1.12-2\n* python3-gitpython/python39-gitpython has been updated to 3.1.40\n* python3-twisted/python39-twisted has been updated to 23.10.0", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:0322", url: "https://access.redhat.com/errata/RHSA-2024:0322", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0322.json", }, ], title: "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update", tracking: { current_release_date: "2024-11-23T03:18:55+00:00", generator: { date: "2024-11-23T03:18:55+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:0322", initial_release_date: "2024-01-22T14:22:42+00:00", revision_history: [ { date: "2024-01-22T14:22:42+00:00", number: "1", summary: "Initial version", }, { date: "2024-01-22T14:22:42+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:18:55+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el9", }, }, }, ], category: "product_family", name: "Red Hat Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product: { name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product_id: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-dynaconf@3.1.12-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product: { name: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product_id: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-gitpython@3.1.40-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product: { name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product_id: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-twisted%2Btls@23.10.0-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-twisted-0:23.10.0-1.el8ap.noarch", product: { name: "python39-twisted-0:23.10.0-1.el8ap.noarch", product_id: "python39-twisted-0:23.10.0-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-twisted@23.10.0-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product: { name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product_id: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-dynaconf@3.1.12-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product: { name: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product_id: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-gitpython@3.1.40-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product: { name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product_id: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted%2Btls@23.10.0-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-twisted-0:23.10.0-1.el9ap.noarch", product: { name: "python3-twisted-0:23.10.0-1.el9ap.noarch", product_id: "python3-twisted-0:23.10.0-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@23.10.0-1.el9ap?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product: { name: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product_id: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-dynaconf@3.1.12-2.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-gitpython-0:3.1.40-1.el8ap.src", product: { name: "python3x-gitpython-0:3.1.40-1.el8ap.src", product_id: "python3x-gitpython-0:3.1.40-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-gitpython@3.1.40-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-twisted-0:23.10.0-1.el8ap.src", product: { name: "python3x-twisted-0:23.10.0-1.el8ap.src", product_id: "python3x-twisted-0:23.10.0-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-twisted@23.10.0-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python-dynaconf-0:3.1.12-2.el9ap.src", product: { name: "python-dynaconf-0:3.1.12-2.el9ap.src", product_id: "python-dynaconf-0:3.1.12-2.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-dynaconf@3.1.12-2.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-gitpython-0:3.1.40-1.el9ap.src", product: { name: "python-gitpython-0:3.1.40-1.el9ap.src", product_id: "python-gitpython-0:3.1.40-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-gitpython@3.1.40-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-twisted-0:23.10.0-1.el9ap.src", product: { name: "python-twisted-0:23.10.0-1.el9ap.src", product_id: "python-twisted-0:23.10.0-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@23.10.0-1.el9ap?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", }, product_reference: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-gitpython-0:3.1.40-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", }, product_reference: "python39-gitpython-0:3.1.40-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", }, product_reference: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-twisted-0:23.10.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", }, product_reference: "python39-twisted-0:23.10.0-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-dynaconf-0:3.1.12-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", }, product_reference: "python3x-dynaconf-0:3.1.12-2.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-gitpython-0:3.1.40-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", }, product_reference: "python3x-gitpython-0:3.1.40-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-twisted-0:23.10.0-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", }, product_reference: "python3x-twisted-0:23.10.0-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-dynaconf-0:3.1.12-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", }, product_reference: "python-dynaconf-0:3.1.12-2.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-gitpython-0:3.1.40-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", }, product_reference: "python-gitpython-0:3.1.40-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-twisted-0:23.10.0-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", }, product_reference: "python-twisted-0:23.10.0-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", }, product_reference: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-gitpython-0:3.1.40-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", }, product_reference: "python3-gitpython-0:3.1.40-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", }, product_reference: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:23.10.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", }, product_reference: "python3-twisted-0:23.10.0-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, ], }, vulnerabilities: [ { cve: "CVE-2023-41040", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2023-10-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2247040", }, ], notes: [ { category: "description", text: "A path traversal vulnerability was found in GitPython due to an input validation error when reading from the \".git\" directory. This issue may allow a remote attacker to prepare a specially crafted \".git\" file with directory traversal characters in file names and force the application to read these files from the local system, which can result in checking for the existence of a specific file on the system or allow a denial of service (DoS) attack.", title: "Vulnerability description", }, { category: "summary", text: "GitPython: Blind local file inclusion", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability cannot be used to read the contents of files but could be used to trigger a denial of service for the program.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-41040", }, { category: "external", summary: "RHBZ#2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-41040", url: "https://www.cve.org/CVERecord?id=CVE-2023-41040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", }, { category: "external", summary: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", url: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", }, ], release_date: "2023-08-31T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-01-22T14:22:42+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:0322", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "GitPython: Blind local file inclusion", }, { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-01-22T14:22:42+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:0322", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
rhsa-2024:1640
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* automation-controller: Django: denial-of-service in 'intcomma' template filter (CVE-2024-24680)\n* automation-controller: aiohttp: http request smuggling (CVE-2024-23829)\n* automation-controller: aiohttp: follow_symlinks directory traversal vulnerability (CVE-2024-23334)\n* automation-controller: Jinja2: HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-22195)\n* automation-controller: cryptography: NULL-dereference when loading PKCS7 certificates (CVE-2023-49083)\n* automation-controller: aiohttp: numerous issues in HTTP parser with header parsing (CVE-2023-47627)\n* automation-controller: Twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n* automation-controller: axios: exposure of confidential data stored in cookies (CVE-2023-45857)\n* automation-controller: GitPython: Blind local file inclusion (CVE-2023-41040)\n* python3-aiohttp/python39-aiohttp: http request smuggling (CVE-2024-23829)\n* python3-aiohttp/python39-aiohttp: follow_symlinks directory traversal vulnerability (CVE-2024-23334)\n* python3-django/python39-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words() (CVE-2024-27351)\n* receptor: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n* receptor: golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests (CVE-2023-39326)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nUpdates and fixes for automation controller:\n* Fixed bug where schedule prompted variables and survey answers were reset on edit when changing one of the basic form fields (AAP-20967)\n* Fixed the update execution environment image to no longer fail jobs that use the previous image (AAP-21733)\n* Removed string validation using comparisons of English literals for comparison, replacing validation with error/op codes as a universal approach to validation and comparison (AAP-21721)\n* Fixed dispatcher to appropriately terminate child processes when dispatcher terminates (AAP-21049)\n* Fixed upgrade from Ansible Tower 3.8.6 to AAP 2.4 to no longer fail upon database schema migration (AAP-19738)\n* automation-controller has been updated to 4.5.5\n\nUpdates and fixes for receptor:\n* Fixes a receptor dialing issue where the connection attempt is timed out too aggressively (AAP-21838, AAP-21828)\n* receptor has been updated to 1.4.5\n\nAdditional fixes:\n* ansible-core has been updated to 2.15.10\n* ansible-runner has been updated to 2.3.6\n* python3-aiohttp/python39-aiohttp has been updated to 3.9.3\n* python3-django/python39-django has been updated 4.2.11\n* python3-pulpcore/python39-pulpcore has been updated 3.28.24", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1640", url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "2248979", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2248979", }, { category: "external", summary: "2249825", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2249825", }, { category: "external", summary: "2253330", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2253330", }, { category: "external", summary: "2255331", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2255331", }, { category: "external", summary: "2257854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2257854", }, { category: "external", summary: "2261856", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261856", }, { category: "external", summary: "2261887", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261887", }, { category: "external", summary: "2261909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261909", }, { category: "external", summary: "2262921", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262921", }, { category: "external", summary: "2266045", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2266045", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1640.json", }, ], title: "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update", tracking: { current_release_date: "2025-03-31T10:12:32+00:00", generator: { date: "2025-03-31T10:12:32+00:00", engine: { name: "Red Hat SDEngine", version: "4.4.2", }, }, id: "RHSA-2024:1640", initial_release_date: "2024-04-02T19:34:39+00:00", revision_history: [ { date: "2024-04-02T19:34:39+00:00", number: "1", summary: "Initial version", }, { date: "2024-04-02T19:34:39+00:00", number: "2", summary: "Last updated version", }, { date: "2025-03-31T10:12:32+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8", }, }, }, ], category: "product_family", name: "Red Hat Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "python-pulpcore-0:3.28.24-1.el9ap.src", product: { name: "python-pulpcore-0:3.28.24-1.el9ap.src", product_id: "python-pulpcore-0:3.28.24-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pulpcore@3.28.24-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-aiohttp-0:3.9.3-1.el9ap.src", product: { name: "python-aiohttp-0:3.9.3-1.el9ap.src", product_id: "python-aiohttp-0:3.9.3-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp@3.9.3-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-django-0:4.2.11-1.el9ap.src", product: { name: "python-django-0:4.2.11-1.el9ap.src", product_id: "python-django-0:4.2.11-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-django@4.2.11-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el9ap.src", product: { name: "ansible-runner-0:2.3.6-1.el9ap.src", product_id: "ansible-runner-0:2.3.6-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.src", product: { name: "receptor-0:1.4.5-1.el9ap.src", product_id: "receptor-0:1.4.5-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el9ap.src", product: { name: "ansible-core-1:2.15.10-1.el9ap.src", product_id: "ansible-core-1:2.15.10-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el9ap?arch=src&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.src", product: { name: "automation-controller-0:4.5.5-2.el9ap.src", product_id: "automation-controller-0:4.5.5-2.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=src", }, }, }, { category: "product_version", name: "python3x-django-0:4.2.11-1.el8ap.src", product: { name: "python3x-django-0:4.2.11-1.el8ap.src", product_id: "python3x-django-0:4.2.11-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-django@4.2.11-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product: { name: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product_id: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-pulpcore@3.28.24-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product: { name: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product_id: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp@3.9.3-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el8ap.src", product: { name: "ansible-runner-0:2.3.6-1.el8ap.src", product_id: "ansible-runner-0:2.3.6-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.src", product: { name: "receptor-0:1.4.5-1.el8ap.src", product_id: "receptor-0:1.4.5-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el8ap.src", product: { name: "ansible-core-1:2.15.10-1.el8ap.src", product_id: "ansible-core-1:2.15.10-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el8ap?arch=src&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.src", product: { name: "automation-controller-0:4.5.5-2.el8ap.src", product_id: "automation-controller-0:4.5.5-2.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product: { name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product_id: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pulpcore@3.28.24-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-django-0:4.2.11-1.el9ap.noarch", product: { name: "python3-django-0:4.2.11-1.el9ap.noarch", product_id: "python3-django-0:4.2.11-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-django@4.2.11-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el9ap.noarch", product: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch", product_id: "ansible-runner-0:2.3.6-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product_id: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-ansible-runner@2.3.6-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "receptorctl-0:1.4.5-1.el9ap.noarch", product: { name: "receptorctl-0:1.4.5-1.el9ap.noarch", product_id: "receptorctl-0:1.4.5-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/receptorctl@1.4.5-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el9ap.noarch", product: { name: "ansible-core-1:2.15.10-1.el9ap.noarch", product_id: "ansible-core-1:2.15.10-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el9ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "ansible-test-1:2.15.10-1.el9ap.noarch", product: { name: "ansible-test-1:2.15.10-1.el9ap.noarch", product_id: "ansible-test-1:2.15.10-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-test@2.15.10-1.el9ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-cli@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-server@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-ui@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-django-0:4.2.11-1.el8ap.noarch", product: { name: "python39-django-0:4.2.11-1.el8ap.noarch", product_id: "python39-django-0:4.2.11-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-django@4.2.11-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product: { name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product_id: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-pulpcore@3.28.24-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el8ap.noarch", product: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch", product_id: "ansible-runner-0:2.3.6-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product_id: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-ansible-runner@2.3.6-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "receptorctl-0:1.4.5-1.el8ap.noarch", product: { name: "receptorctl-0:1.4.5-1.el8ap.noarch", product_id: "receptorctl-0:1.4.5-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/receptorctl@1.4.5-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el8ap.noarch", product: { name: "ansible-core-1:2.15.10-1.el8ap.noarch", product_id: "ansible-core-1:2.15.10-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el8ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "ansible-test-1:2.15.10-1.el8ap.noarch", product: { name: "ansible-test-1:2.15.10-1.el8ap.noarch", product_id: "ansible-test-1:2.15.10-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-test@2.15.10-1.el8ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-cli@4.5.5-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-server@4.5.5-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-ui@4.5.5-2.el8ap?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.x86_64", product: { name: "receptor-0:1.4.5-1.el9ap.x86_64", product_id: "receptor-0:1.4.5-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.x86_64", product: { name: "automation-controller-0:4.5.5-2.el9ap.x86_64", product_id: "automation-controller-0:4.5.5-2.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.x86_64", product: { name: "receptor-0:1.4.5-1.el8ap.x86_64", product_id: "receptor-0:1.4.5-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.x86_64", product: { name: "automation-controller-0:4.5.5-2.el8ap.x86_64", product_id: "automation-controller-0:4.5.5-2.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.ppc64le", product: { name: "receptor-0:1.4.5-1.el9ap.ppc64le", product_id: "receptor-0:1.4.5-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product: { name: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product_id: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.ppc64le", product: { name: "receptor-0:1.4.5-1.el8ap.ppc64le", product_id: "receptor-0:1.4.5-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product: { name: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product_id: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.s390x", product: { name: "receptor-0:1.4.5-1.el9ap.s390x", product_id: "receptor-0:1.4.5-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.s390x", product: { name: "automation-controller-0:4.5.5-2.el9ap.s390x", product_id: "automation-controller-0:4.5.5-2.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.s390x", product: { name: "receptor-0:1.4.5-1.el8ap.s390x", product_id: "receptor-0:1.4.5-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.s390x", product: { name: "automation-controller-0:4.5.5-2.el8ap.s390x", product_id: "automation-controller-0:4.5.5-2.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.aarch64", product: { name: "receptor-0:1.4.5-1.el9ap.aarch64", product_id: "receptor-0:1.4.5-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.aarch64", product: { name: "automation-controller-0:4.5.5-2.el9ap.aarch64", product_id: "automation-controller-0:4.5.5-2.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.aarch64", product: { name: "receptor-0:1.4.5-1.el8ap.aarch64", product_id: "receptor-0:1.4.5-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.aarch64", product: { name: "automation-controller-0:4.5.5-2.el8ap.aarch64", product_id: "automation-controller-0:4.5.5-2.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-server-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-server-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-django-0:4.2.11-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", }, product_reference: "python39-django-0:4.2.11-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", }, product_reference: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-0:3.9.3-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", }, product_reference: "python3x-aiohttp-0:3.9.3-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-django-0:4.2.11-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", }, product_reference: "python3x-django-0:4.2.11-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-pulpcore-0:3.28.24-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", }, product_reference: "python3x-pulpcore-0:3.28.24-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-server-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-server-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-0:3.9.3-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", }, product_reference: "python-aiohttp-0:3.9.3-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-django-0:4.2.11-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", }, product_reference: "python-django-0:4.2.11-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-pulpcore-0:3.28.24-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", }, product_reference: "python-pulpcore-0:3.28.24-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-django-0:4.2.11-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", }, product_reference: "python3-django-0:4.2.11-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", }, product_reference: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, ], }, vulnerabilities: [ { cve: "CVE-2023-39326", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-12-06T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2253330", }, ], notes: [ { category: "description", text: "A flaw was found in the Golang net/http/internal package. This issue may allow a malicious user to send an HTTP request and cause the receiver to read more bytes from network than are in the body (up to 1GiB), causing the receiver to fail reading the response, possibly leading to a Denial of Service (DoS).", title: "Vulnerability description", }, { category: "summary", text: "golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-39326", }, { category: "external", summary: "RHBZ#2253330", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2253330", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-39326", url: "https://www.cve.org/CVERecord?id=CVE-2023-39326", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-39326", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-39326", }, { category: "external", summary: "https://pkg.go.dev/vuln/GO-2023-2382", url: "https://pkg.go.dev/vuln/GO-2023-2382", }, ], release_date: "2023-12-06T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "No mitigation is available for this flaw.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests", }, { cve: "CVE-2023-41040", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2023-10-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2247040", }, ], notes: [ { category: "description", text: "A path traversal vulnerability was found in GitPython due to an input validation error when reading from the \".git\" directory. This issue may allow a remote attacker to prepare a specially crafted \".git\" file with directory traversal characters in file names and force the application to read these files from the local system, which can result in checking for the existence of a specific file on the system or allow a denial of service (DoS) attack.", title: "Vulnerability description", }, { category: "summary", text: "GitPython: Blind local file inclusion", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability cannot be used to read the contents of files but could be used to trigger a denial of service for the program.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-41040", }, { category: "external", summary: "RHBZ#2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-41040", url: "https://www.cve.org/CVERecord?id=CVE-2023-41040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", }, { category: "external", summary: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", url: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", }, ], release_date: "2023-08-31T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "GitPython: Blind local file inclusion", }, { cve: "CVE-2023-45857", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-11-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2248979", }, ], notes: [ { category: "description", text: "A flaw was found in Axios that may expose a confidential session token. This issue can allow a remote attacker to bypass security measures and view sensitive data.", title: "Vulnerability description", }, { category: "summary", text: "axios: exposure of confidential data stored in cookies", title: "Vulnerability summary", }, { category: "other", text: "For Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected container was deprecated in ACM 2.5 version which is not anymore supported. Following versions of this product are not impacted by this issue.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-45857", }, { category: "external", summary: "RHBZ#2248979", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2248979", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-45857", url: "https://www.cve.org/CVERecord?id=CVE-2023-45857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-45857", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-45857", }, ], release_date: "2023-11-09T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "axios: exposure of confidential data stored in cookies", }, { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, { cve: "CVE-2023-47627", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-11-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2249825", }, ], notes: [ { category: "description", text: "An HTTP request smuggling vulnerability was found in aiohttp. Numerous issues with HTTP parsing can allow an attacker to smuggle HTTP requests.", title: "Vulnerability description", }, { category: "summary", text: "python-aiohttp: numerous issues in HTTP parser with header parsing", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-47627", }, { category: "external", summary: "RHBZ#2249825", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2249825", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-47627", url: "https://www.cve.org/CVERecord?id=CVE-2023-47627", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-47627", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-47627", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-gfw2-4jvh-wgfg", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-gfw2-4jvh-wgfg", }, ], release_date: "2023-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-aiohttp: numerous issues in HTTP parser with header parsing", }, { cve: "CVE-2023-49083", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, discovery_date: "2023-12-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2255331", }, ], notes: [ { category: "description", text: "A null-pointer dereference vulnerability was found in python-cryptography during the loading of PKCS7 certificates. Invoking \"load_pem_pkcs7_certificates\" or \"load_der_pkcs7_certificates\" can trigger this issue and lead to subsequent segmentation fault and result in a Denial of Service (DoS) for any application aiming to deserialize a PKCS7 blob or certificate. The potential impact includes disruptions in system availability and stability.", title: "Vulnerability description", }, { category: "summary", text: "python-cryptography: NULL-dereference when loading PKCS7 certificates", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability arises when functions like \"load_pem_pkcs7_certificates\" or \"load_der_pkcs7_certificates\" are invoked, triggering the issue during the deserialization of PKCS7 blobs or certificates. The moderate rating is based on the fact that the vulnerability can lead to a segmentation fault, posing a risk of disrupting the normal functioning of any application attempting to deserialize the mentioned certificates. While the impact is significant in terms of service denial and potential system instability, the severity is deemed moderate as it does not directly expose sensitive data or allow for remote code execution, focusing primarily on the localized consequences of a DoS scenario.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-49083", }, { category: "external", summary: "RHBZ#2255331", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2255331", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-49083", url: "https://www.cve.org/CVERecord?id=CVE-2023-49083", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-49083", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-49083", }, { category: "external", summary: "https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a", url: "https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a", }, { category: "external", summary: "https://github.com/pyca/cryptography/pull/9926", url: "https://github.com/pyca/cryptography/pull/9926", }, { category: "external", summary: "https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97", url: "https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97", }, ], release_date: "2023-11-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-cryptography: NULL-dereference when loading PKCS7 certificates", }, { acknowledgments: [ { names: [ "@r3kumar", "@qmuntal", ], }, ], cve: "CVE-2024-1394", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-02-06T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2262921", }, ], notes: [ { category: "description", text: "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.", title: "Vulnerability description", }, { category: "summary", text: "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads", title: "Vulnerability summary", }, { category: "other", text: "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1394", }, { category: "external", summary: "RHBZ#2262921", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262921", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1394", url: "https://www.cve.org/CVERecord?id=CVE-2024-1394", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1394", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1394", }, { category: "external", summary: "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136", url: "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136", }, { category: "external", summary: "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6", url: "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6", }, { category: "external", summary: "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f", url: "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f", }, { category: "external", summary: "https://pkg.go.dev/vuln/GO-2024-2660", url: "https://pkg.go.dev/vuln/GO-2024-2660", }, { category: "external", summary: "https://vuln.go.dev/ID/GO-2024-2660.json", url: "https://vuln.go.dev/ID/GO-2024-2660.json", }, ], release_date: "2024-03-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads", }, { cve: "CVE-2024-22195", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2024-01-11T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2257854", }, ], notes: [ { category: "description", text: "A cross-site scripting (XSS) flaw was found in Jinja2 due to the xmlattr filter allowing keys with spaces, contrary to XML/HTML attribute standards. If an application accepts user-input keys and renders them for other users, attackers can inject additional attributes, potentially leading to XSS. This misuse of the xmlattr filter enables the injection of arbitrary HTML attributes, bypassing auto-escaping and potentially circumventing attribute validation checks.", title: "Vulnerability description", }, { category: "summary", text: "jinja2: HTML attribute injection when passing user input as keys to xmlattr filter", title: "Vulnerability summary", }, { category: "other", text: "The identified issue is classified as moderate due to a cross-site scripting (XSS) vulnerability in Jinja2. This flaw arises from the xmlattr filter, which permits keys with spaces, contrary to XML/HTML attribute standards. In scenarios where an application accepts user-input keys and renders them for other users, attackers can exploit this vulnerability to inject additional attributes, potentially resulting in XSS attacks. The misuse of the xmlattr filter facilitates the injection of arbitrary HTML attributes, allowing attackers to bypass auto-escaping mechanisms and potentially evade attribute validation checks, posing a moderate security risk.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-22195", }, { category: "external", summary: "RHBZ#2257854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2257854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-22195", url: "https://www.cve.org/CVERecord?id=CVE-2024-22195", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-22195", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-22195", }, { category: "external", summary: "https://github.com/pallets/jinja/releases/tag/3.1.3", url: "https://github.com/pallets/jinja/releases/tag/3.1.3", }, { category: "external", summary: "https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95", url: "https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95", }, ], release_date: "2024-01-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jinja2: HTML attribute injection when passing user input as keys to xmlattr filter", }, { cve: "CVE-2024-23334", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261887", }, ], notes: [ { category: "description", text: "A flaw was found in aiohttp. When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'follow_symlinks' is set to True, there is no validation to check if a given file path is within the root directory. This issue can lead to a directory traversal vulnerability, resulting in unauthorized access to arbitrary files on the system, even when symlinks are not present.", title: "Vulnerability description", }, { category: "summary", text: "aiohttp: follow_symlinks directory traversal vulnerability", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability has been rated as having a moderate impact. There is a non-default precondition which is required to exploit it: the follow_symlinks setting needs to be enabled.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-23334", }, { category: "external", summary: "RHBZ#2261887", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261887", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-23334", url: "https://www.cve.org/CVERecord?id=CVE-2024-23334", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-23334", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-23334", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-5h86-8mv2-jq9f", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-5h86-8mv2-jq9f", }, ], release_date: "2024-01-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "If using follow_symlinks=True outside of a restricted local development environment, disable the option immediately. This option is NOT needed to follow symlinks that point to a location within the static root directory; it is only intended to allow a symlink to break out of the static directory. Even with this CVE fixed, there is still a substantial risk of misconfiguration when using this option on a server that accepts requests from remote users.\n\nAdditionally, aiohttp has always recommended using a reverse proxy server (such as nginx) to handle static resources and not to use these static resources in aiohttp for production environments. Doing so also protects against this vulnerability, and is why we expect the number of affected users to be very low.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "aiohttp: follow_symlinks directory traversal vulnerability", }, { cve: "CVE-2024-23829", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261909", }, ], notes: [ { category: "description", text: "An HTTP request smuggling vulnerability was found in aiohttp. Security-sensitive parts of the Python HTTP parser retained minor differences in allowable character sets that must trigger error handling to robustly match frame boundaries of proxies in order to protect against the injection of additional requests.", title: "Vulnerability description", }, { category: "summary", text: "python-aiohttp: http request smuggling", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-23829", }, { category: "external", summary: "RHBZ#2261909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261909", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-23829", url: "https://www.cve.org/CVERecord?id=CVE-2024-23829", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-23829", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-23829", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8qpw-xqxj-h4r2", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8qpw-xqxj-h4r2", }, ], release_date: "2024-01-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-aiohttp: http request smuggling", }, { cve: "CVE-2024-24680", discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261856", }, ], notes: [ { category: "description", text: "A vulnerability was found in Django. When used with very long strings, the intcomma template filter was subject to a potential denial of service attack.", title: "Vulnerability description", }, { category: "summary", text: "Django: denial-of-service in ``intcomma`` template filter", title: "Vulnerability summary", }, { category: "other", text: "Redhat has rated this vulnerability as moderate severity because exploitation of this vulnerability is only theoretical in nature and can only result in a denial of service bug.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-24680", }, { category: "external", summary: "RHBZ#2261856", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261856", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-24680", url: "https://www.cve.org/CVERecord?id=CVE-2024-24680", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-24680", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-24680", }, { category: "external", summary: "https://github.com/advisories/GHSA-xxj9-f6rv-m3x4", url: "https://github.com/advisories/GHSA-xxj9-f6rv-m3x4", }, { category: "external", summary: "https://www.djangoproject.com/weblog/2024/feb/06/security-releases/", url: "https://www.djangoproject.com/weblog/2024/feb/06/security-releases/", }, ], release_date: "2024-02-06T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Django: denial-of-service in ``intcomma`` template filter", }, { cve: "CVE-2024-27351", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, discovery_date: "2024-02-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2266045", }, ], notes: [ { category: "description", text: "An inefficient regular expression complexity flaw was found in the Truncator.words function and truncatewords_html filter of Django. This issue may allow an attacker to use a suitably crafted string to cause a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "python-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words()", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-27351", }, { category: "external", summary: "RHBZ#2266045", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2266045", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-27351", url: "https://www.cve.org/CVERecord?id=CVE-2024-27351", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-27351", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-27351", }, { category: "external", summary: "https://www.djangoproject.com/weblog/2024/mar/04/security-releases/", url: "https://www.djangoproject.com/weblog/2024/mar/04/security-releases/", }, ], release_date: "2024-03-04T09:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words()", }, ], }
rhsa-2024:1518
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-twisted is now available for Red Hat OpenStack Platform 16.2 (Train).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail servers and more.\n\nSecurity Fix(es):\n\n* python-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1518", url: "https://access.redhat.com/errata/RHSA-2024:1518", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1518.json", }, ], title: "Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 (python-twisted) security update", tracking: { current_release_date: "2024-11-23T03:05:46+00:00", generator: { date: "2024-11-23T03:05:46+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:1518", initial_release_date: "2024-03-26T12:24:51+00:00", revision_history: [ { date: "2024-03-26T12:24:51+00:00", number: "1", summary: "Initial version", }, { date: "2024-03-26T12:24:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:05:46+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenStack Platform 16.2", product: { name: "Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.2::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenStack Platform", }, { branches: [ { category: "product_version", name: "python-twisted-0:16.4.1-21.el8ost.src", product: { name: "python-twisted-0:16.4.1-21.el8ost.src", product_id: "python-twisted-0:16.4.1-21.el8ost.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@16.4.1-21.el8ost?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-03-26T12:24:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1518", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
rhsa-2024_1518
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-twisted is now available for Red Hat OpenStack Platform 16.2 (Train).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail servers and more.\n\nSecurity Fix(es):\n\n* python-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1518", url: "https://access.redhat.com/errata/RHSA-2024:1518", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1518.json", }, ], title: "Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 (python-twisted) security update", tracking: { current_release_date: "2024-11-23T03:05:46+00:00", generator: { date: "2024-11-23T03:05:46+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:1518", initial_release_date: "2024-03-26T12:24:51+00:00", revision_history: [ { date: "2024-03-26T12:24:51+00:00", number: "1", summary: "Initial version", }, { date: "2024-03-26T12:24:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:05:46+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenStack Platform 16.2", product: { name: "Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.2::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenStack Platform", }, { branches: [ { category: "product_version", name: "python-twisted-0:16.4.1-21.el8ost.src", product: { name: "python-twisted-0:16.4.1-21.el8ost.src", product_id: "python-twisted-0:16.4.1-21.el8ost.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@16.4.1-21.el8ost?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-03-26T12:24:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1518", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
rhsa-2024:0322
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* python3-gitpython/python39-gitpython: Blind local file inclusion (CVE-2023-41040)\n\n* python3-twisted/python39-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional changes:\n* python3-dynaconf/python39-dynaconf has been updated to 3.1.12-2\n* python3-gitpython/python39-gitpython has been updated to 3.1.40\n* python3-twisted/python39-twisted has been updated to 23.10.0", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:0322", url: "https://access.redhat.com/errata/RHSA-2024:0322", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0322.json", }, ], title: "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update", tracking: { current_release_date: "2024-11-23T03:18:55+00:00", generator: { date: "2024-11-23T03:18:55+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:0322", initial_release_date: "2024-01-22T14:22:42+00:00", revision_history: [ { date: "2024-01-22T14:22:42+00:00", number: "1", summary: "Initial version", }, { date: "2024-01-22T14:22:42+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:18:55+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el9", }, }, }, ], category: "product_family", name: "Red Hat Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product: { name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product_id: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-dynaconf@3.1.12-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product: { name: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product_id: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-gitpython@3.1.40-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product: { name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product_id: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-twisted%2Btls@23.10.0-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-twisted-0:23.10.0-1.el8ap.noarch", product: { name: "python39-twisted-0:23.10.0-1.el8ap.noarch", product_id: "python39-twisted-0:23.10.0-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-twisted@23.10.0-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product: { name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product_id: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-dynaconf@3.1.12-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product: { name: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product_id: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-gitpython@3.1.40-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product: { name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product_id: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted%2Btls@23.10.0-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-twisted-0:23.10.0-1.el9ap.noarch", product: { name: "python3-twisted-0:23.10.0-1.el9ap.noarch", product_id: "python3-twisted-0:23.10.0-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@23.10.0-1.el9ap?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product: { name: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product_id: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-dynaconf@3.1.12-2.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-gitpython-0:3.1.40-1.el8ap.src", product: { name: "python3x-gitpython-0:3.1.40-1.el8ap.src", product_id: "python3x-gitpython-0:3.1.40-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-gitpython@3.1.40-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-twisted-0:23.10.0-1.el8ap.src", product: { name: "python3x-twisted-0:23.10.0-1.el8ap.src", product_id: "python3x-twisted-0:23.10.0-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-twisted@23.10.0-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python-dynaconf-0:3.1.12-2.el9ap.src", product: { name: "python-dynaconf-0:3.1.12-2.el9ap.src", product_id: "python-dynaconf-0:3.1.12-2.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-dynaconf@3.1.12-2.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-gitpython-0:3.1.40-1.el9ap.src", product: { name: "python-gitpython-0:3.1.40-1.el9ap.src", product_id: "python-gitpython-0:3.1.40-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-gitpython@3.1.40-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-twisted-0:23.10.0-1.el9ap.src", product: { name: "python-twisted-0:23.10.0-1.el9ap.src", product_id: "python-twisted-0:23.10.0-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@23.10.0-1.el9ap?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", }, product_reference: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-gitpython-0:3.1.40-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", }, product_reference: "python39-gitpython-0:3.1.40-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", }, product_reference: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-twisted-0:23.10.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", }, product_reference: "python39-twisted-0:23.10.0-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-dynaconf-0:3.1.12-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", }, product_reference: "python3x-dynaconf-0:3.1.12-2.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-gitpython-0:3.1.40-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", }, product_reference: "python3x-gitpython-0:3.1.40-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-twisted-0:23.10.0-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", }, product_reference: "python3x-twisted-0:23.10.0-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-dynaconf-0:3.1.12-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", }, product_reference: "python-dynaconf-0:3.1.12-2.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-gitpython-0:3.1.40-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", }, product_reference: "python-gitpython-0:3.1.40-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-twisted-0:23.10.0-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", }, product_reference: "python-twisted-0:23.10.0-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", }, product_reference: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-gitpython-0:3.1.40-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", }, product_reference: "python3-gitpython-0:3.1.40-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", }, product_reference: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:23.10.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", }, product_reference: "python3-twisted-0:23.10.0-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, ], }, vulnerabilities: [ { cve: "CVE-2023-41040", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2023-10-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2247040", }, ], notes: [ { category: "description", text: "A path traversal vulnerability was found in GitPython due to an input validation error when reading from the \".git\" directory. This issue may allow a remote attacker to prepare a specially crafted \".git\" file with directory traversal characters in file names and force the application to read these files from the local system, which can result in checking for the existence of a specific file on the system or allow a denial of service (DoS) attack.", title: "Vulnerability description", }, { category: "summary", text: "GitPython: Blind local file inclusion", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability cannot be used to read the contents of files but could be used to trigger a denial of service for the program.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-41040", }, { category: "external", summary: "RHBZ#2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-41040", url: "https://www.cve.org/CVERecord?id=CVE-2023-41040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", }, { category: "external", summary: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", url: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", }, ], release_date: "2023-08-31T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-01-22T14:22:42+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:0322", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "GitPython: Blind local file inclusion", }, { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-01-22T14:22:42+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:0322", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
RHSA-2024:1516
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-twisted is now available for Red Hat OpenStack Platform 16.1 (Train).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail servers and more.\n\nSecurity Fix(es):\n\n* python-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1516", url: "https://access.redhat.com/errata/RHSA-2024:1516", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1516.json", }, ], title: "Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (python-twisted) security update", tracking: { current_release_date: "2024-11-23T03:05:37+00:00", generator: { date: "2024-11-23T03:05:37+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:1516", initial_release_date: "2024-03-26T12:24:32+00:00", revision_history: [ { date: "2024-03-26T12:24:32+00:00", number: "1", summary: "Initial version", }, { date: "2024-03-26T12:24:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:05:37+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenStack Platform 16.1", product: { name: "Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1::el8", }, }, }, { category: "product_name", name: "Red Hat OpenStack Platform 16.1", product: { name: "Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenStack Platform", }, { branches: [ { category: "product_version", name: "python-twisted-0:16.4.1-21.el8ost.src", product: { name: "python-twisted-0:16.4.1-21.el8ost.src", product_id: "python-twisted-0:16.4.1-21.el8ost.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@16.4.1-21.el8ost?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-03-26T12:24:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1516", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
RHSA-2024:1518
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-twisted is now available for Red Hat OpenStack Platform 16.2 (Train).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail servers and more.\n\nSecurity Fix(es):\n\n* python-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1518", url: "https://access.redhat.com/errata/RHSA-2024:1518", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1518.json", }, ], title: "Red Hat Security Advisory: Red Hat OpenStack Platform 16.2.6 (python-twisted) security update", tracking: { current_release_date: "2024-11-23T03:05:46+00:00", generator: { date: "2024-11-23T03:05:46+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:1518", initial_release_date: "2024-03-26T12:24:51+00:00", revision_history: [ { date: "2024-03-26T12:24:51+00:00", number: "1", summary: "Initial version", }, { date: "2024-03-26T12:24:51+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:05:46+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenStack Platform 16.2", product: { name: "Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.2::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenStack Platform", }, { branches: [ { category: "product_version", name: "python-twisted-0:16.4.1-21.el8ost.src", product: { name: "python-twisted-0:16.4.1-21.el8ost.src", product_id: "python-twisted-0:16.4.1-21.el8ost.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@16.4.1-21.el8ost?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.2", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.2", product_id: "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.2", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-03-26T12:24:51+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1518", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOS-16.2:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.2:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
rhsa-2024_1516
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-twisted is now available for Red Hat OpenStack Platform 16.1 (Train).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail servers and more.\n\nSecurity Fix(es):\n\n* python-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1516", url: "https://access.redhat.com/errata/RHSA-2024:1516", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1516.json", }, ], title: "Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (python-twisted) security update", tracking: { current_release_date: "2024-11-23T03:05:37+00:00", generator: { date: "2024-11-23T03:05:37+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:1516", initial_release_date: "2024-03-26T12:24:32+00:00", revision_history: [ { date: "2024-03-26T12:24:32+00:00", number: "1", summary: "Initial version", }, { date: "2024-03-26T12:24:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:05:37+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenStack Platform 16.1", product: { name: "Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1::el8", }, }, }, { category: "product_name", name: "Red Hat OpenStack Platform 16.1", product: { name: "Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenStack Platform", }, { branches: [ { category: "product_version", name: "python-twisted-0:16.4.1-21.el8ost.src", product: { name: "python-twisted-0:16.4.1-21.el8ost.src", product_id: "python-twisted-0:16.4.1-21.el8ost.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@16.4.1-21.el8ost?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-03-26T12:24:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1516", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
RHSA-2024:0322
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* python3-gitpython/python39-gitpython: Blind local file inclusion (CVE-2023-41040)\n\n* python3-twisted/python39-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAdditional changes:\n* python3-dynaconf/python39-dynaconf has been updated to 3.1.12-2\n* python3-gitpython/python39-gitpython has been updated to 3.1.40\n* python3-twisted/python39-twisted has been updated to 23.10.0", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:0322", url: "https://access.redhat.com/errata/RHSA-2024:0322", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_0322.json", }, ], title: "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update", tracking: { current_release_date: "2024-11-23T03:18:55+00:00", generator: { date: "2024-11-23T03:18:55+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:0322", initial_release_date: "2024-01-22T14:22:42+00:00", revision_history: [ { date: "2024-01-22T14:22:42+00:00", number: "1", summary: "Initial version", }, { date: "2024-01-22T14:22:42+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:18:55+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el9", }, }, }, ], category: "product_family", name: "Red Hat Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product: { name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product_id: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-dynaconf@3.1.12-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product: { name: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product_id: "python39-gitpython-0:3.1.40-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-gitpython@3.1.40-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product: { name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product_id: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-twisted%2Btls@23.10.0-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-twisted-0:23.10.0-1.el8ap.noarch", product: { name: "python39-twisted-0:23.10.0-1.el8ap.noarch", product_id: "python39-twisted-0:23.10.0-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-twisted@23.10.0-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product: { name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product_id: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-dynaconf@3.1.12-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product: { name: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product_id: "python3-gitpython-0:3.1.40-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-gitpython@3.1.40-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product: { name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product_id: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted%2Btls@23.10.0-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-twisted-0:23.10.0-1.el9ap.noarch", product: { name: "python3-twisted-0:23.10.0-1.el9ap.noarch", product_id: "python3-twisted-0:23.10.0-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@23.10.0-1.el9ap?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product: { name: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product_id: "python3x-dynaconf-0:3.1.12-2.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-dynaconf@3.1.12-2.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-gitpython-0:3.1.40-1.el8ap.src", product: { name: "python3x-gitpython-0:3.1.40-1.el8ap.src", product_id: "python3x-gitpython-0:3.1.40-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-gitpython@3.1.40-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-twisted-0:23.10.0-1.el8ap.src", product: { name: "python3x-twisted-0:23.10.0-1.el8ap.src", product_id: "python3x-twisted-0:23.10.0-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-twisted@23.10.0-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python-dynaconf-0:3.1.12-2.el9ap.src", product: { name: "python-dynaconf-0:3.1.12-2.el9ap.src", product_id: "python-dynaconf-0:3.1.12-2.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-dynaconf@3.1.12-2.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-gitpython-0:3.1.40-1.el9ap.src", product: { name: "python-gitpython-0:3.1.40-1.el9ap.src", product_id: "python-gitpython-0:3.1.40-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-gitpython@3.1.40-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-twisted-0:23.10.0-1.el9ap.src", product: { name: "python-twisted-0:23.10.0-1.el9ap.src", product_id: "python-twisted-0:23.10.0-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@23.10.0-1.el9ap?arch=src", }, }, }, ], category: "architecture", name: "src", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python39-dynaconf-0:3.1.12-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", }, product_reference: "python39-dynaconf-0:3.1.12-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-gitpython-0:3.1.40-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", }, product_reference: "python39-gitpython-0:3.1.40-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", }, product_reference: "python39-twisted+tls-0:23.10.0-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-twisted-0:23.10.0-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", }, product_reference: "python39-twisted-0:23.10.0-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-dynaconf-0:3.1.12-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", }, product_reference: "python3x-dynaconf-0:3.1.12-2.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-gitpython-0:3.1.40-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", }, product_reference: "python3x-gitpython-0:3.1.40-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-twisted-0:23.10.0-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", }, product_reference: "python3x-twisted-0:23.10.0-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-dynaconf-0:3.1.12-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", }, product_reference: "python-dynaconf-0:3.1.12-2.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-gitpython-0:3.1.40-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", }, product_reference: "python-gitpython-0:3.1.40-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-twisted-0:23.10.0-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", }, product_reference: "python-twisted-0:23.10.0-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-dynaconf-0:3.1.12-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", }, product_reference: "python3-dynaconf-0:3.1.12-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-gitpython-0:3.1.40-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", }, product_reference: "python3-gitpython-0:3.1.40-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", }, product_reference: "python3-twisted+tls-0:23.10.0-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:23.10.0-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", }, product_reference: "python3-twisted-0:23.10.0-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, ], }, vulnerabilities: [ { cve: "CVE-2023-41040", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2023-10-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2247040", }, ], notes: [ { category: "description", text: "A path traversal vulnerability was found in GitPython due to an input validation error when reading from the \".git\" directory. This issue may allow a remote attacker to prepare a specially crafted \".git\" file with directory traversal characters in file names and force the application to read these files from the local system, which can result in checking for the existence of a specific file on the system or allow a denial of service (DoS) attack.", title: "Vulnerability description", }, { category: "summary", text: "GitPython: Blind local file inclusion", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability cannot be used to read the contents of files but could be used to trigger a denial of service for the program.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-41040", }, { category: "external", summary: "RHBZ#2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-41040", url: "https://www.cve.org/CVERecord?id=CVE-2023-41040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", }, { category: "external", summary: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", url: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", }, ], release_date: "2023-08-31T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-01-22T14:22:42+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:0322", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "GitPython: Blind local file inclusion", }, { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4:python39-dynaconf-0:3.1.12-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-gitpython-0:3.1.40-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-dynaconf-0:3.1.12-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-gitpython-0:3.1.40-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-dynaconf-0:3.1.12-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-gitpython-0:3.1.40-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-dynaconf-0:3.1.12-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-gitpython-0:3.1.40-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-01-22T14:22:42+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:0322", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4:python39-twisted+tls-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-twisted-0:23.10.0-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-twisted-0:23.10.0-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-twisted-0:23.10.0-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-twisted+tls-0:23.10.0-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-twisted-0:23.10.0-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
rhsa-2024:1516
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update for python-twisted is now available for Red Hat OpenStack Platform 16.1 (Train).\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Twisted is a networking engine written in Python, supporting numerous protocols. It contains a web server, numerous chat clients, chat servers, mail servers and more.\n\nSecurity Fix(es):\n\n* python-twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1516", url: "https://access.redhat.com/errata/RHSA-2024:1516", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1516.json", }, ], title: "Red Hat Security Advisory: Red Hat OpenStack Platform 16.1.9 (python-twisted) security update", tracking: { current_release_date: "2024-11-23T03:05:37+00:00", generator: { date: "2024-11-23T03:05:37+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2024:1516", initial_release_date: "2024-03-26T12:24:32+00:00", revision_history: [ { date: "2024-03-26T12:24:32+00:00", number: "1", summary: "Initial version", }, { date: "2024-03-26T12:24:32+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-23T03:05:37+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat OpenStack Platform 16.1", product: { name: "Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1::el8", }, }, }, { category: "product_name", name: "Red Hat OpenStack Platform 16.1", product: { name: "Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1::el8", }, }, }, ], category: "product_family", name: "Red Hat OpenStack Platform", }, { branches: [ { category: "product_version", name: "python-twisted-0:16.4.1-21.el8ost.src", product: { name: "python-twisted-0:16.4.1-21.el8ost.src", product_id: "python-twisted-0:16.4.1-21.el8ost.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted@16.4.1-21.el8ost?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=x86_64", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_id: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-twisted-debugsource@16.4.1-21.el8ost?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_id: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-twisted-debuginfo@16.4.1-21.el8ost?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-0:16.4.1-21.el8ost.src as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", }, product_reference: "python-twisted-0:16.4.1-21.el8ost.src", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, { category: "default_component_of", full_product_name: { name: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64 as a component of Red Hat OpenStack Platform 16.1", product_id: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", }, product_reference: "python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", relates_to_product_reference: "8Base-RHOS-DEPLOYMENT-TOOLS-16.1", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-03-26T12:24:32+00:00", details: "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258", product_ids: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1516", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-RHOS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-0:16.4.1-21.el8ost.src", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python-twisted-debugsource-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-0:16.4.1-21.el8ost.x86_64", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.ppc64le", "8Base-RHOS-DEPLOYMENT-TOOLS-16.1:python3-twisted-debuginfo-0:16.4.1-21.el8ost.x86_64", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, ], }
rhsa-2024_1640
Vulnerability from csaf_redhat
Notes
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "An update is now available for Red Hat Ansible Automation Platform 2.4\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.", title: "Topic", }, { category: "general", text: "Red Hat Ansible Automation Platform provides an enterprise framework for building, deploying and managing IT automation at scale. IT Managers can provide top-down guidelines on how automation is applied to individual teams, while automation developers retain the freedom to write tasks that leverage existing knowledge without the overhead. Ansible Automation Platform makes it possible for users across an organization to share, vet, and manage automation content by means of a simple, powerful, and agentless language.\n\nSecurity Fix(es):\n\n* automation-controller: Django: denial-of-service in 'intcomma' template filter (CVE-2024-24680)\n* automation-controller: aiohttp: http request smuggling (CVE-2024-23829)\n* automation-controller: aiohttp: follow_symlinks directory traversal vulnerability (CVE-2024-23334)\n* automation-controller: Jinja2: HTML attribute injection when passing user input as keys to xmlattr filter (CVE-2024-22195)\n* automation-controller: cryptography: NULL-dereference when loading PKCS7 certificates (CVE-2023-49083)\n* automation-controller: aiohttp: numerous issues in HTTP parser with header parsing (CVE-2023-47627)\n* automation-controller: Twisted: disordered HTTP pipeline response in twisted.web (CVE-2023-46137)\n* automation-controller: axios: exposure of confidential data stored in cookies (CVE-2023-45857)\n* automation-controller: GitPython: Blind local file inclusion (CVE-2023-41040)\n* python3-aiohttp/python39-aiohttp: http request smuggling (CVE-2024-23829)\n* python3-aiohttp/python39-aiohttp: follow_symlinks directory traversal vulnerability (CVE-2024-23334)\n* python3-django/python39-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words() (CVE-2024-27351)\n* receptor: golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n* receptor: golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests (CVE-2023-39326)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nUpdates and fixes for automation controller:\n* Fixed bug where schedule prompted variables and survey answers were reset on edit when changing one of the basic form fields (AAP-20967)\n* Fixed the update execution environment image to no longer fail jobs that use the previous image (AAP-21733)\n* Removed string validation using comparisons of English literals for comparison, replacing validation with error/op codes as a universal approach to validation and comparison (AAP-21721)\n* Fixed dispatcher to appropriately terminate child processes when dispatcher terminates (AAP-21049)\n* Fixed upgrade from Ansible Tower 3.8.6 to AAP 2.4 to no longer fail upon database schema migration (AAP-19738)\n* automation-controller has been updated to 4.5.5\n\nUpdates and fixes for receptor:\n* Fixes a receptor dialing issue where the connection attempt is timed out too aggressively (AAP-21838, AAP-21828)\n* receptor has been updated to 1.4.5\n\nAdditional fixes:\n* ansible-core has been updated to 2.15.10\n* ansible-runner has been updated to 2.3.6\n* python3-aiohttp/python39-aiohttp has been updated to 3.9.3\n* python3-django/python39-django has been updated 4.2.11\n* python3-pulpcore/python39-pulpcore has been updated 3.28.24", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2024:1640", url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#moderate", url: "https://access.redhat.com/security/updates/classification/#moderate", }, { category: "external", summary: "2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "2248979", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2248979", }, { category: "external", summary: "2249825", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2249825", }, { category: "external", summary: "2253330", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2253330", }, { category: "external", summary: "2255331", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2255331", }, { category: "external", summary: "2257854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2257854", }, { category: "external", summary: "2261856", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261856", }, { category: "external", summary: "2261887", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261887", }, { category: "external", summary: "2261909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261909", }, { category: "external", summary: "2262921", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262921", }, { category: "external", summary: "2266045", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2266045", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_1640.json", }, ], title: "Red Hat Security Advisory: Red Hat Ansible Automation Platform 2.4 Product Security and Bug Fix Update", tracking: { current_release_date: "2024-12-17T22:37:39+00:00", generator: { date: "2024-12-17T22:37:39+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.3", }, }, id: "RHSA-2024:1640", initial_release_date: "2024-04-02T19:34:39+00:00", revision_history: [ { date: "2024-04-02T19:34:39+00:00", number: "1", summary: "Initial version", }, { date: "2024-04-02T19:34:39+00:00", number: "2", summary: "Last updated version", }, { date: "2024-12-17T22:37:39+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el9", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_inside:2.4::el8", }, }, }, { category: "product_name", name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product: { name: "Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform_developer:2.4::el8", }, }, }, ], category: "product_family", name: "Red Hat Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "python-pulpcore-0:3.28.24-1.el9ap.src", product: { name: "python-pulpcore-0:3.28.24-1.el9ap.src", product_id: "python-pulpcore-0:3.28.24-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-pulpcore@3.28.24-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-aiohttp-0:3.9.3-1.el9ap.src", product: { name: "python-aiohttp-0:3.9.3-1.el9ap.src", product_id: "python-aiohttp-0:3.9.3-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp@3.9.3-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "python-django-0:4.2.11-1.el9ap.src", product: { name: "python-django-0:4.2.11-1.el9ap.src", product_id: "python-django-0:4.2.11-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python-django@4.2.11-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el9ap.src", product: { name: "ansible-runner-0:2.3.6-1.el9ap.src", product_id: "ansible-runner-0:2.3.6-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.src", product: { name: "receptor-0:1.4.5-1.el9ap.src", product_id: "receptor-0:1.4.5-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=src", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el9ap.src", product: { name: "ansible-core-1:2.15.10-1.el9ap.src", product_id: "ansible-core-1:2.15.10-1.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el9ap?arch=src&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.src", product: { name: "automation-controller-0:4.5.5-2.el9ap.src", product_id: "automation-controller-0:4.5.5-2.el9ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=src", }, }, }, { category: "product_version", name: "python3x-django-0:4.2.11-1.el8ap.src", product: { name: "python3x-django-0:4.2.11-1.el8ap.src", product_id: "python3x-django-0:4.2.11-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-django@4.2.11-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product: { name: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product_id: "python3x-pulpcore-0:3.28.24-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-pulpcore@3.28.24-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product: { name: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product_id: "python3x-aiohttp-0:3.9.3-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp@3.9.3-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el8ap.src", product: { name: "ansible-runner-0:2.3.6-1.el8ap.src", product_id: "ansible-runner-0:2.3.6-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.src", product: { name: "receptor-0:1.4.5-1.el8ap.src", product_id: "receptor-0:1.4.5-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=src", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el8ap.src", product: { name: "ansible-core-1:2.15.10-1.el8ap.src", product_id: "ansible-core-1:2.15.10-1.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el8ap?arch=src&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.src", product: { name: "automation-controller-0:4.5.5-2.el8ap.src", product_id: "automation-controller-0:4.5.5-2.el8ap.src", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product: { name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product_id: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-pulpcore@3.28.24-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-django-0:4.2.11-1.el9ap.noarch", product: { name: "python3-django-0:4.2.11-1.el9ap.noarch", product_id: "python3-django-0:4.2.11-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-django@4.2.11-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el9ap.noarch", product: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch", product_id: "ansible-runner-0:2.3.6-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product_id: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python3-ansible-runner@2.3.6-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "receptorctl-0:1.4.5-1.el9ap.noarch", product: { name: "receptorctl-0:1.4.5-1.el9ap.noarch", product_id: "receptorctl-0:1.4.5-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/receptorctl@1.4.5-1.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el9ap.noarch", product: { name: "ansible-core-1:2.15.10-1.el9ap.noarch", product_id: "ansible-core-1:2.15.10-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el9ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "ansible-test-1:2.15.10-1.el9ap.noarch", product: { name: "ansible-test-1:2.15.10-1.el9ap.noarch", product_id: "ansible-test-1:2.15.10-1.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-test@2.15.10-1.el9ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-cli@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-server-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-server@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product: { name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product_id: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-ui@4.5.5-2.el9ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-django-0:4.2.11-1.el8ap.noarch", product: { name: "python39-django-0:4.2.11-1.el8ap.noarch", product_id: "python39-django-0:4.2.11-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-django@4.2.11-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product: { name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product_id: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-pulpcore@3.28.24-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-runner-0:2.3.6-1.el8ap.noarch", product: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch", product_id: "ansible-runner-0:2.3.6-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-runner@2.3.6-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product_id: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/python39-ansible-runner@2.3.6-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "receptorctl-0:1.4.5-1.el8ap.noarch", product: { name: "receptorctl-0:1.4.5-1.el8ap.noarch", product_id: "receptorctl-0:1.4.5-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/receptorctl@1.4.5-1.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "ansible-core-1:2.15.10-1.el8ap.noarch", product: { name: "ansible-core-1:2.15.10-1.el8ap.noarch", product_id: "ansible-core-1:2.15.10-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-core@2.15.10-1.el8ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "ansible-test-1:2.15.10-1.el8ap.noarch", product: { name: "ansible-test-1:2.15.10-1.el8ap.noarch", product_id: "ansible-test-1:2.15.10-1.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/ansible-test@2.15.10-1.el8ap?arch=noarch&epoch=1", }, }, }, { category: "product_version", name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-cli@4.5.5-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-server-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-server@4.5.5-2.el8ap?arch=noarch", }, }, }, { category: "product_version", name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product: { name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product_id: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-ui@4.5.5-2.el8ap?arch=noarch", }, }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.x86_64", product: { name: "receptor-0:1.4.5-1.el9ap.x86_64", product_id: "receptor-0:1.4.5-1.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.x86_64", product: { name: "automation-controller-0:4.5.5-2.el9ap.x86_64", product_id: "automation-controller-0:4.5.5-2.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=x86_64", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.x86_64", product: { name: "receptor-0:1.4.5-1.el8ap.x86_64", product_id: "receptor-0:1.4.5-1.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.x86_64", product: { name: "automation-controller-0:4.5.5-2.el8ap.x86_64", product_id: "automation-controller-0:4.5.5-2.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=x86_64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.ppc64le", product: { name: "receptor-0:1.4.5-1.el9ap.ppc64le", product_id: "receptor-0:1.4.5-1.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product: { name: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product_id: "automation-controller-0:4.5.5-2.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.ppc64le", product: { name: "receptor-0:1.4.5-1.el8ap.ppc64le", product_id: "receptor-0:1.4.5-1.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product: { name: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product_id: "automation-controller-0:4.5.5-2.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=ppc64le", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=ppc64le", }, }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.s390x", product: { name: "receptor-0:1.4.5-1.el9ap.s390x", product_id: "receptor-0:1.4.5-1.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.s390x", product: { name: "automation-controller-0:4.5.5-2.el9ap.s390x", product_id: "automation-controller-0:4.5.5-2.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=s390x", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.s390x", product: { name: "receptor-0:1.4.5-1.el8ap.s390x", product_id: "receptor-0:1.4.5-1.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.s390x", product: { name: "automation-controller-0:4.5.5-2.el8ap.s390x", product_id: "automation-controller-0:4.5.5-2.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=s390x", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product: { name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product_id: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product_id: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python-aiohttp-debugsource@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product_id: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3-aiohttp-debuginfo@3.9.3-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el9ap.aarch64", product: { name: "receptor-0:1.4.5-1.el9ap.aarch64", product_id: "receptor-0:1.4.5-1.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el9ap.aarch64", product: { name: "automation-controller-0:4.5.5-2.el9ap.aarch64", product_id: "automation-controller-0:4.5.5-2.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el9ap?arch=aarch64", }, }, }, { category: "product_version", name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product: { name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product_id: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product_id: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python3x-aiohttp-debugsource@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product_id: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/python39-aiohttp-debuginfo@3.9.3-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "receptor-0:1.4.5-1.el8ap.aarch64", product: { name: "receptor-0:1.4.5-1.el8ap.aarch64", product_id: "receptor-0:1.4.5-1.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/receptor@1.4.5-1.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-0:4.5.5-2.el8ap.aarch64", product: { name: "automation-controller-0:4.5.5-2.el8ap.aarch64", product_id: "automation-controller-0:4.5.5-2.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller@4.5.5-2.el8ap?arch=aarch64", }, }, }, { category: "product_version", name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product_id: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", product_identification_helper: { purl: "pkg:rpm/redhat/automation-controller-venv-tower@4.5.5-2.el8ap?arch=aarch64", }, }, }, ], category: "architecture", name: "aarch64", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", }, product_reference: "automation-controller-0:4.5.5-2.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-cli-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-cli-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-server-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-server-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-ui-0:4.5.5-2.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", }, product_reference: "automation-controller-ui-0:4.5.5-2.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python39-aiohttp-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", }, product_reference: "python39-ansible-runner-0:2.3.6-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-django-0:4.2.11-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", }, product_reference: "python39-django-0:4.2.11-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python39-pulpcore-0:3.28.24-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", }, product_reference: "python39-pulpcore-0:3.28.24-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-0:3.9.3-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", }, product_reference: "python3x-aiohttp-0:3.9.3-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", }, product_reference: "python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-django-0:4.2.11-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", }, product_reference: "python3x-django-0:4.2.11-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3x-pulpcore-0:3.28.24-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", }, product_reference: "python3x-pulpcore-0:3.28.24-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el8ap.aarch64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el8ap.ppc64le", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el8ap.s390x", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", }, product_reference: "receptor-0:1.4.5-1.el8ap.src", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el8ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el8ap.x86_64", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el8ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 8", product_id: "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el8ap.noarch", relates_to_product_reference: "8Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Developer-1.1", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4-Inside-1.2", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-core-1:2.15.10-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", }, product_reference: "ansible-core-1:2.15.10-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-runner-0:2.3.6-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", }, product_reference: "ansible-runner-0:2.3.6-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "ansible-test-1:2.15.10-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", }, product_reference: "ansible-test-1:2.15.10-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-0:4.5.5-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", }, product_reference: "automation-controller-0:4.5.5-2.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-cli-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-cli-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-server-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-server-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-ui-0:4.5.5-2.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", }, product_reference: "automation-controller-ui-0:4.5.5-2.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", }, product_reference: "automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-0:3.9.3-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", }, product_reference: "python-aiohttp-0:3.9.3-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-django-0:4.2.11-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", }, product_reference: "python-django-0:4.2.11-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python-pulpcore-0:3.28.24-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", }, product_reference: "python-pulpcore-0:3.28.24-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python3-aiohttp-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", }, product_reference: "python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", }, product_reference: "python3-ansible-runner-0:2.3.6-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-django-0:4.2.11-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", }, product_reference: "python3-django-0:4.2.11-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "python3-pulpcore-0:3.28.24-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", }, product_reference: "python3-pulpcore-0:3.28.24-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.aarch64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", }, product_reference: "receptor-0:1.4.5-1.el9ap.aarch64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.ppc64le as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", }, product_reference: "receptor-0:1.4.5-1.el9ap.ppc64le", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.s390x as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", }, product_reference: "receptor-0:1.4.5-1.el9ap.s390x", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.src as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", }, product_reference: "receptor-0:1.4.5-1.el9ap.src", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptor-0:1.4.5-1.el9ap.x86_64 as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", }, product_reference: "receptor-0:1.4.5-1.el9ap.x86_64", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, { category: "default_component_of", full_product_name: { name: "receptorctl-0:1.4.5-1.el9ap.noarch as a component of Red Hat Ansible Automation Platform 2.4 for RHEL 9", product_id: "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", }, product_reference: "receptorctl-0:1.4.5-1.el9ap.noarch", relates_to_product_reference: "9Base-Ansible-Automation-Platform-2.4", }, ], }, vulnerabilities: [ { cve: "CVE-2023-39326", cwe: { id: "CWE-400", name: "Uncontrolled Resource Consumption", }, discovery_date: "2023-12-06T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2253330", }, ], notes: [ { category: "description", text: "A flaw was found in the Golang net/http/internal package. This issue may allow a malicious user to send an HTTP request and cause the receiver to read more bytes from network than are in the body (up to 1GiB), causing the receiver to fail reading the response, possibly leading to a Denial of Service (DoS).", title: "Vulnerability description", }, { category: "summary", text: "golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-39326", }, { category: "external", summary: "RHBZ#2253330", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2253330", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-39326", url: "https://www.cve.org/CVERecord?id=CVE-2023-39326", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-39326", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-39326", }, { category: "external", summary: "https://pkg.go.dev/vuln/GO-2023-2382", url: "https://pkg.go.dev/vuln/GO-2023-2382", }, ], release_date: "2023-12-06T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "No mitigation is available for this flaw.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "golang: net/http/internal: Denial of Service (DoS) via Resource Consumption via HTTP requests", }, { cve: "CVE-2023-41040", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2023-10-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2247040", }, ], notes: [ { category: "description", text: "A path traversal vulnerability was found in GitPython due to an input validation error when reading from the \".git\" directory. This issue may allow a remote attacker to prepare a specially crafted \".git\" file with directory traversal characters in file names and force the application to read these files from the local system, which can result in checking for the existence of a specific file on the system or allow a denial of service (DoS) attack.", title: "Vulnerability description", }, { category: "summary", text: "GitPython: Blind local file inclusion", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability cannot be used to read the contents of files but could be used to trigger a denial of service for the program.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-41040", }, { category: "external", summary: "RHBZ#2247040", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2247040", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-41040", url: "https://www.cve.org/CVERecord?id=CVE-2023-41040", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-41040", }, { category: "external", summary: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", url: "https://github.com/gitpython-developers/GitPython/security/advisories/GHSA-cwvm-v4w8-q58c", }, ], release_date: "2023-08-31T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "LOW", baseScore: 5.1, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "GitPython: Blind local file inclusion", }, { cve: "CVE-2023-45857", cwe: { id: "CWE-200", name: "Exposure of Sensitive Information to an Unauthorized Actor", }, discovery_date: "2023-11-09T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2248979", }, ], notes: [ { category: "description", text: "A flaw was found in Axios that may expose a confidential session token. This issue can allow a remote attacker to bypass security measures and view sensitive data.", title: "Vulnerability description", }, { category: "summary", text: "axios: exposure of confidential data stored in cookies", title: "Vulnerability summary", }, { category: "other", text: "For Red Hat Advanced Cluster Management for Kubernetes (RHACM), the affected container was deprecated in ACM 2.5 version which is not anymore supported. Following versions of this product are not impacted by this issue.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-45857", }, { category: "external", summary: "RHBZ#2248979", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2248979", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-45857", url: "https://www.cve.org/CVERecord?id=CVE-2023-45857", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-45857", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-45857", }, ], release_date: "2023-11-09T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "axios: exposure of confidential data stored in cookies", }, { cve: "CVE-2023-46137", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-10-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2246264", }, ], notes: [ { category: "description", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "Vulnerability description", }, { category: "summary", text: "python-twisted: disordered HTTP pipeline response in twisted.web", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "RHBZ#2246264", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2246264", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-46137", url: "https://www.cve.org/CVERecord?id=CVE-2023-46137", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, ], release_date: "2023-10-25T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-twisted: disordered HTTP pipeline response in twisted.web", }, { cve: "CVE-2023-47627", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2023-11-15T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2249825", }, ], notes: [ { category: "description", text: "An HTTP request smuggling vulnerability was found in aiohttp. Numerous issues with HTTP parsing can allow an attacker to smuggle HTTP requests.", title: "Vulnerability description", }, { category: "summary", text: "python-aiohttp: numerous issues in HTTP parser with header parsing", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-47627", }, { category: "external", summary: "RHBZ#2249825", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2249825", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-47627", url: "https://www.cve.org/CVERecord?id=CVE-2023-47627", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-47627", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-47627", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-gfw2-4jvh-wgfg", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-gfw2-4jvh-wgfg", }, ], release_date: "2023-11-15T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "HIGH", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-aiohttp: numerous issues in HTTP parser with header parsing", }, { cve: "CVE-2023-49083", cwe: { id: "CWE-476", name: "NULL Pointer Dereference", }, discovery_date: "2023-12-20T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2255331", }, ], notes: [ { category: "description", text: "A null-pointer dereference vulnerability was found in python-cryptography during the loading of PKCS7 certificates. Invoking \"load_pem_pkcs7_certificates\" or \"load_der_pkcs7_certificates\" can trigger this issue and lead to subsequent segmentation fault and result in a Denial of Service (DoS) for any application aiming to deserialize a PKCS7 blob or certificate. The potential impact includes disruptions in system availability and stability.", title: "Vulnerability description", }, { category: "summary", text: "python-cryptography: NULL-dereference when loading PKCS7 certificates", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability arises when functions like \"load_pem_pkcs7_certificates\" or \"load_der_pkcs7_certificates\" are invoked, triggering the issue during the deserialization of PKCS7 blobs or certificates. The moderate rating is based on the fact that the vulnerability can lead to a segmentation fault, posing a risk of disrupting the normal functioning of any application attempting to deserialize the mentioned certificates. While the impact is significant in terms of service denial and potential system instability, the severity is deemed moderate as it does not directly expose sensitive data or allow for remote code execution, focusing primarily on the localized consequences of a DoS scenario.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2023-49083", }, { category: "external", summary: "RHBZ#2255331", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2255331", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2023-49083", url: "https://www.cve.org/CVERecord?id=CVE-2023-49083", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2023-49083", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-49083", }, { category: "external", summary: "https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a", url: "https://github.com/pyca/cryptography/commit/f09c261ca10a31fe41b1262306db7f8f1da0e48a", }, { category: "external", summary: "https://github.com/pyca/cryptography/pull/9926", url: "https://github.com/pyca/cryptography/pull/9926", }, { category: "external", summary: "https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97", url: "https://github.com/pyca/cryptography/security/advisories/GHSA-jfhm-5ghh-2f97", }, ], release_date: "2023-11-28T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-cryptography: NULL-dereference when loading PKCS7 certificates", }, { acknowledgments: [ { names: [ "@r3kumar", "@qmuntal", ], }, ], cve: "CVE-2024-1394", cwe: { id: "CWE-401", name: "Missing Release of Memory after Effective Lifetime", }, discovery_date: "2024-02-06T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2262921", }, ], notes: [ { category: "description", text: "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey and ctx. That function uses named return parameters to free pkey and ctx if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey and ctx will be nil inside the deferred function that should free them.", title: "Vulnerability description", }, { category: "summary", text: "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads", title: "Vulnerability summary", }, { category: "other", text: "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-1394", }, { category: "external", summary: "RHBZ#2262921", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2262921", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-1394", url: "https://www.cve.org/CVERecord?id=CVE-2024-1394", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-1394", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-1394", }, { category: "external", summary: "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136", url: "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136", }, { category: "external", summary: "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6", url: "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6", }, { category: "external", summary: "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f", url: "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f", }, { category: "external", summary: "https://pkg.go.dev/vuln/GO-2024-2660", url: "https://pkg.go.dev/vuln/GO-2024-2660", }, { category: "external", summary: "https://vuln.go.dev/ID/GO-2024-2660.json", url: "https://vuln.go.dev/ID/GO-2024-2660.json", }, ], release_date: "2024-03-20T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Important", }, ], title: "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads", }, { cve: "CVE-2024-22195", cwe: { id: "CWE-79", name: "Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", }, discovery_date: "2024-01-11T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2257854", }, ], notes: [ { category: "description", text: "A cross-site scripting (XSS) flaw was found in Jinja2 due to the xmlattr filter allowing keys with spaces, contrary to XML/HTML attribute standards. If an application accepts user-input keys and renders them for other users, attackers can inject additional attributes, potentially leading to XSS. This misuse of the xmlattr filter enables the injection of arbitrary HTML attributes, bypassing auto-escaping and potentially circumventing attribute validation checks.", title: "Vulnerability description", }, { category: "summary", text: "jinja2: HTML attribute injection when passing user input as keys to xmlattr filter", title: "Vulnerability summary", }, { category: "other", text: "The identified issue is classified as moderate due to a cross-site scripting (XSS) vulnerability in Jinja2. This flaw arises from the xmlattr filter, which permits keys with spaces, contrary to XML/HTML attribute standards. In scenarios where an application accepts user-input keys and renders them for other users, attackers can exploit this vulnerability to inject additional attributes, potentially resulting in XSS attacks. The misuse of the xmlattr filter facilitates the injection of arbitrary HTML attributes, allowing attackers to bypass auto-escaping mechanisms and potentially evade attribute validation checks, posing a moderate security risk.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-22195", }, { category: "external", summary: "RHBZ#2257854", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2257854", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-22195", url: "https://www.cve.org/CVERecord?id=CVE-2024-22195", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-22195", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-22195", }, { category: "external", summary: "https://github.com/pallets/jinja/releases/tag/3.1.3", url: "https://github.com/pallets/jinja/releases/tag/3.1.3", }, { category: "external", summary: "https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95", url: "https://github.com/pallets/jinja/security/advisories/GHSA-h5c8-rqwp-cp95", }, ], release_date: "2024-01-11T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.4, baseSeverity: "MEDIUM", confidentialityImpact: "LOW", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "REQUIRED", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "jinja2: HTML attribute injection when passing user input as keys to xmlattr filter", }, { cve: "CVE-2024-23334", cwe: { id: "CWE-22", name: "Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')", }, discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261887", }, ], notes: [ { category: "description", text: "A flaw was found in aiohttp. When using aiohttp as a web server and configuring static routes, it is necessary to specify the root path for static files. Additionally, the option 'follow_symlinks' can be used to determine whether to follow symbolic links outside the static root directory. When 'follow_symlinks' is set to True, there is no validation to check if a given file path is within the root directory. This issue can lead to a directory traversal vulnerability, resulting in unauthorized access to arbitrary files on the system, even when symlinks are not present.", title: "Vulnerability description", }, { category: "summary", text: "aiohttp: follow_symlinks directory traversal vulnerability", title: "Vulnerability summary", }, { category: "other", text: "This vulnerability has been rated as having a moderate impact. There is a non-default precondition which is required to exploit it: the follow_symlinks setting needs to be enabled.", title: "Statement", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-23334", }, { category: "external", summary: "RHBZ#2261887", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261887", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-23334", url: "https://www.cve.org/CVERecord?id=CVE-2024-23334", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-23334", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-23334", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-5h86-8mv2-jq9f", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-5h86-8mv2-jq9f", }, ], release_date: "2024-01-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, { category: "workaround", details: "If using follow_symlinks=True outside of a restricted local development environment, disable the option immediately. This option is NOT needed to follow symlinks that point to a location within the static root directory; it is only intended to allow a symlink to break out of the static directory. Even with this CVE fixed, there is still a substantial risk of misconfiguration when using this option on a server that accepts requests from remote users.\n\nAdditionally, aiohttp has always recommended using a reverse proxy server (such as nginx) to handle static resources and not to use these static resources in aiohttp for production environments. Doing so also protects against this vulnerability, and is why we expect the number of affected users to be very low.", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], scores: [ { cvss_v3: { attackComplexity: "HIGH", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.9, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "aiohttp: follow_symlinks directory traversal vulnerability", }, { cve: "CVE-2024-23829", cwe: { id: "CWE-444", name: "Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261909", }, ], notes: [ { category: "description", text: "An HTTP request smuggling vulnerability was found in aiohttp. Security-sensitive parts of the Python HTTP parser retained minor differences in allowable character sets that must trigger error handling to robustly match frame boundaries of proxies in order to protect against the injection of additional requests.", title: "Vulnerability description", }, { category: "summary", text: "python-aiohttp: http request smuggling", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-23829", }, { category: "external", summary: "RHBZ#2261909", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261909", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-23829", url: "https://www.cve.org/CVERecord?id=CVE-2024-23829", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-23829", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-23829", }, { category: "external", summary: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8qpw-xqxj-h4r2", url: "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-8qpw-xqxj-h4r2", }, ], release_date: "2024-01-30T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "LOW", baseScore: 6.5, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-aiohttp: http request smuggling", }, { cve: "CVE-2024-24680", discovery_date: "2024-01-30T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2261856", }, ], notes: [ { category: "description", text: "A vulnerability was found in Django. When used with very long strings, the intcomma template filter was subject to a potential denial of service attack.", title: "Vulnerability description", }, { category: "summary", text: "Django: denial-of-service in ``intcomma`` template filter", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-24680", }, { category: "external", summary: "RHBZ#2261856", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2261856", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-24680", url: "https://www.cve.org/CVERecord?id=CVE-2024-24680", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-24680", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-24680", }, { category: "external", summary: "https://github.com/advisories/GHSA-xxj9-f6rv-m3x4", url: "https://github.com/advisories/GHSA-xxj9-f6rv-m3x4", }, { category: "external", summary: "https://www.djangoproject.com/weblog/2024/feb/06/security-releases/", url: "https://www.djangoproject.com/weblog/2024/feb/06/security-releases/", }, ], release_date: "2024-02-06T15:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "Django: denial-of-service in ``intcomma`` template filter", }, { cve: "CVE-2024-27351", cwe: { id: "CWE-1333", name: "Inefficient Regular Expression Complexity", }, discovery_date: "2024-02-26T00:00:00+00:00", flags: [ { label: "vulnerable_code_not_present", product_ids: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], ids: [ { system_name: "Red Hat Bugzilla ID", text: "2266045", }, ], notes: [ { category: "description", text: "An inefficient regular expression complexity flaw was found in the Truncator.words function and truncatewords_html filter of Django. This issue may allow an attacker to use a suitably crafted string to cause a denial of service.", title: "Vulnerability description", }, { category: "summary", text: "python-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words()", title: "Vulnerability summary", }, { category: "general", text: "The CVSS score(s) listed for this vulnerability do not reflect the associated product's status, and are included for informational purposes to better understand the severity of this vulnerability.", title: "CVSS score applicability", }, ], product_status: { fixed: [ "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", ], known_not_affected: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2024-27351", }, { category: "external", summary: "RHBZ#2266045", url: "https://bugzilla.redhat.com/show_bug.cgi?id=2266045", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2024-27351", url: "https://www.cve.org/CVERecord?id=CVE-2024-27351", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2024-27351", url: "https://nvd.nist.gov/vuln/detail/CVE-2024-27351", }, { category: "external", summary: "https://www.djangoproject.com/weblog/2024/mar/04/security-releases/", url: "https://www.djangoproject.com/weblog/2024/mar/04/security-releases/", }, ], release_date: "2024-03-04T09:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2024-04-02T19:34:39+00:00", details: "Red Hat Ansible Automation Platform", product_ids: [ "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], scores: [ { cvss_v3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, products: [ "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python39-aiohttp-debuginfo-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python39-ansible-runner-0:2.3.6-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-django-0:4.2.11-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python39-pulpcore-0:3.28.24-1.el8ap.noarch", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-0:3.9.3-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:python3x-aiohttp-debugsource-0:3.9.3-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:python3x-django-0:4.2.11-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:python3x-pulpcore-0:3.28.24-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.aarch64", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.ppc64le", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.s390x", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.src", "8Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el8ap.x86_64", "8Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el8ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Developer-1.1:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4-Inside-1.2:receptorctl-0:1.4.5-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-core-1:2.15.10-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:ansible-runner-0:2.3.6-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:ansible-test-1:2.15.10-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:automation-controller-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-cli-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-server-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-ui-0:4.5.5-2.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:automation-controller-venv-tower-0:4.5.5-2.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-0:3.9.3-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python-aiohttp-debugsource-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python-django-0:4.2.11-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python-pulpcore-0:3.28.24-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:python3-aiohttp-debuginfo-0:3.9.3-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:python3-ansible-runner-0:2.3.6-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-django-0:4.2.11-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:python3-pulpcore-0:3.28.24-1.el9ap.noarch", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.aarch64", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.ppc64le", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.s390x", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.src", "9Base-Ansible-Automation-Platform-2.4:receptor-0:1.4.5-1.el9ap.x86_64", "9Base-Ansible-Automation-Platform-2.4:receptorctl-0:1.4.5-1.el9ap.noarch", ], }, ], threats: [ { category: "impact", details: "Moderate", }, ], title: "python-django: Potential regular expression denial-of-service in django.utils.text.Truncator.words()", }, ], }
suse-su-2023:4607-1
Vulnerability from csaf_suse
Notes
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python3-Twisted", title: "Title of the patch", }, { category: "description", text: "This update for python3-Twisted fixes the following issues:\n\n- CVE-2023-46137: Fixed issue inside serializing pipelined HTTP requests. (bsc#1216588)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2023-4607,SUSE-SLE-Module-Server-Applications-15-SP4-2023-4607,SUSE-SLE-Module-Server-Applications-15-SP5-2023-4607,openSUSE-SLE-15.4-2023-4607,openSUSE-SLE-15.5-2023-4607", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4607-1.json", }, { category: "self", summary: "URL for SUSE-SU-2023:4607-1", url: "https://www.suse.com/support/update/announcement/2023/suse-su-20234607-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2023:4607-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2023-November/017255.html", }, { category: "self", summary: "SUSE Bug 1216588", url: "https://bugzilla.suse.com/1216588", }, { category: "self", summary: "SUSE CVE CVE-2023-46137 page", url: "https://www.suse.com/security/cve/CVE-2023-46137/", }, ], title: "Security update for python3-Twisted", tracking: { current_release_date: "2023-11-29T08:59:28Z", generator: { date: "2023-11-29T08:59:28Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2023:4607-1", initial_release_date: "2023-11-29T08:59:28Z", revision_history: [ { date: "2023-11-29T08:59:28Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Twisted-doc-22.2.0-150400.15.1.aarch64", product: { name: "python-Twisted-doc-22.2.0-150400.15.1.aarch64", product_id: "python-Twisted-doc-22.2.0-150400.15.1.aarch64", }, }, { category: "product_version", name: "python3-Twisted-22.2.0-150400.15.1.aarch64", product: { name: "python3-Twisted-22.2.0-150400.15.1.aarch64", product_id: "python3-Twisted-22.2.0-150400.15.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.2.0-150400.15.1.i586", product: { name: "python-Twisted-doc-22.2.0-150400.15.1.i586", product_id: "python-Twisted-doc-22.2.0-150400.15.1.i586", }, }, { category: "product_version", name: "python3-Twisted-22.2.0-150400.15.1.i586", product: { name: "python3-Twisted-22.2.0-150400.15.1.i586", product_id: "python3-Twisted-22.2.0-150400.15.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.2.0-150400.15.1.ppc64le", product: { name: "python-Twisted-doc-22.2.0-150400.15.1.ppc64le", product_id: "python-Twisted-doc-22.2.0-150400.15.1.ppc64le", }, }, { category: "product_version", name: "python3-Twisted-22.2.0-150400.15.1.ppc64le", product: { name: "python3-Twisted-22.2.0-150400.15.1.ppc64le", product_id: "python3-Twisted-22.2.0-150400.15.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.2.0-150400.15.1.s390x", product: { name: "python-Twisted-doc-22.2.0-150400.15.1.s390x", product_id: "python-Twisted-doc-22.2.0-150400.15.1.s390x", }, }, { category: "product_version", name: "python3-Twisted-22.2.0-150400.15.1.s390x", product: { name: "python3-Twisted-22.2.0-150400.15.1.s390x", product_id: "python3-Twisted-22.2.0-150400.15.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.2.0-150400.15.1.x86_64", product: { name: "python-Twisted-doc-22.2.0-150400.15.1.x86_64", product_id: "python-Twisted-doc-22.2.0-150400.15.1.x86_64", }, }, { category: "product_version", name: "python3-Twisted-22.2.0-150400.15.1.x86_64", product: { name: "python3-Twisted-22.2.0-150400.15.1.x86_64", product_id: "python3-Twisted-22.2.0-150400.15.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Server Applications 15 SP4", product: { name: "SUSE Linux Enterprise Module for Server Applications 15 SP4", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-server-applications:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Server Applications 15 SP5", product: { name: "SUSE Linux Enterprise Module for Server Applications 15 SP5", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-server-applications:15:sp5", }, }, }, { category: "product_name", name: "openSUSE Leap 15.4", product: { name: "openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.4", }, }, }, { category: "product_name", name: "openSUSE Leap 15.5", product: { name: "openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.aarch64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP4", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.ppc64le", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP4", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.s390x", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP4", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.x86_64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.aarch64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP5", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.aarch64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.ppc64le as component of SUSE Linux Enterprise Module for Server Applications 15 SP5", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.ppc64le", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.s390x as component of SUSE Linux Enterprise Module for Server Applications 15 SP5", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.s390x", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.x86_64 as component of SUSE Linux Enterprise Module for Server Applications 15 SP5", product_id: "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.x86_64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Server Applications 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.aarch64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.aarch64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.ppc64le as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.ppc64le", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.s390x as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.s390x", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.s390x", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.x86_64 as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.x86_64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.aarch64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.aarch64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.aarch64", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.ppc64le as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.ppc64le", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.ppc64le", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.s390x as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.s390x", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.s390x", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-22.2.0-150400.15.1.x86_64 as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.x86_64", }, product_reference: "python3-Twisted-22.2.0-150400.15.1.x86_64", relates_to_product_reference: "openSUSE Leap 15.5", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-46137", }, ], notes: [ { category: "general", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.x86_64", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.aarch64", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.ppc64le", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.s390x", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.x86_64", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.aarch64", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.ppc64le", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.s390x", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-46137", url: "https://www.suse.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "SUSE Bug 1216588 for CVE-2023-46137", url: "https://bugzilla.suse.com/1216588", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.x86_64", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.aarch64", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.ppc64le", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.s390x", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.x86_64", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.aarch64", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.ppc64le", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.s390x", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15 SP4:python3-Twisted-22.2.0-150400.15.1.x86_64", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.aarch64", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.ppc64le", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.s390x", "SUSE Linux Enterprise Module for Server Applications 15 SP5:python3-Twisted-22.2.0-150400.15.1.x86_64", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.aarch64", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.ppc64le", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.s390x", "openSUSE Leap 15.4:python3-Twisted-22.2.0-150400.15.1.x86_64", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.aarch64", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.ppc64le", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.s390x", "openSUSE Leap 15.5:python3-Twisted-22.2.0-150400.15.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2023-11-29T08:59:28Z", details: "moderate", }, ], title: "CVE-2023-46137", }, ], }
suse-su-2023:4830-1
Vulnerability from csaf_suse
Notes
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Twisted", title: "Title of the patch", }, { category: "description", text: "This update for python-Twisted fixes the following issues:\n\n- CVE-2023-46137: Fixed issue inside serializing pipelined HTTP requests. (bsc#1216588)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2023-4830,SUSE-SLE-Module-Public-Cloud-15-SP1-2023-4830", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4830-1.json", }, { category: "self", summary: "URL for SUSE-SU-2023:4830-1", url: "https://www.suse.com/support/update/announcement/2023/suse-su-20234830-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2023:4830-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017363.html", }, { category: "self", summary: "SUSE Bug 1216588", url: "https://bugzilla.suse.com/1216588", }, { category: "self", summary: "SUSE CVE CVE-2023-46137 page", url: "https://www.suse.com/security/cve/CVE-2023-46137/", }, ], title: "Security update for python-Twisted", tracking: { current_release_date: "2023-12-14T10:05:53Z", generator: { date: "2023-12-14T10:05:53Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2023:4830-1", initial_release_date: "2023-12-14T10:05:53Z", revision_history: [ { date: "2023-12-14T10:05:53Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Twisted-doc-17.9.0-150000.3.11.1.aarch64", product: { name: "python-Twisted-doc-17.9.0-150000.3.11.1.aarch64", product_id: "python-Twisted-doc-17.9.0-150000.3.11.1.aarch64", }, }, { category: "product_version", name: "python2-Twisted-17.9.0-150000.3.11.1.aarch64", product: { name: "python2-Twisted-17.9.0-150000.3.11.1.aarch64", product_id: "python2-Twisted-17.9.0-150000.3.11.1.aarch64", }, }, { category: "product_version", name: "python3-Twisted-17.9.0-150000.3.11.1.aarch64", product: { name: "python3-Twisted-17.9.0-150000.3.11.1.aarch64", product_id: "python3-Twisted-17.9.0-150000.3.11.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-17.9.0-150000.3.11.1.i586", product: { name: "python-Twisted-doc-17.9.0-150000.3.11.1.i586", product_id: "python-Twisted-doc-17.9.0-150000.3.11.1.i586", }, }, { category: "product_version", name: "python2-Twisted-17.9.0-150000.3.11.1.i586", product: { name: "python2-Twisted-17.9.0-150000.3.11.1.i586", product_id: "python2-Twisted-17.9.0-150000.3.11.1.i586", }, }, { category: "product_version", name: "python3-Twisted-17.9.0-150000.3.11.1.i586", product: { name: "python3-Twisted-17.9.0-150000.3.11.1.i586", product_id: "python3-Twisted-17.9.0-150000.3.11.1.i586", }, }, ], category: "architecture", name: "i586", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-17.9.0-150000.3.11.1.ppc64le", product: { name: "python-Twisted-doc-17.9.0-150000.3.11.1.ppc64le", product_id: "python-Twisted-doc-17.9.0-150000.3.11.1.ppc64le", }, }, { category: "product_version", name: "python2-Twisted-17.9.0-150000.3.11.1.ppc64le", product: { name: "python2-Twisted-17.9.0-150000.3.11.1.ppc64le", product_id: "python2-Twisted-17.9.0-150000.3.11.1.ppc64le", }, }, { category: "product_version", name: "python3-Twisted-17.9.0-150000.3.11.1.ppc64le", product: { name: "python3-Twisted-17.9.0-150000.3.11.1.ppc64le", product_id: "python3-Twisted-17.9.0-150000.3.11.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-17.9.0-150000.3.11.1.s390x", product: { name: "python-Twisted-doc-17.9.0-150000.3.11.1.s390x", product_id: "python-Twisted-doc-17.9.0-150000.3.11.1.s390x", }, }, { category: "product_version", name: "python2-Twisted-17.9.0-150000.3.11.1.s390x", product: { name: "python2-Twisted-17.9.0-150000.3.11.1.s390x", product_id: "python2-Twisted-17.9.0-150000.3.11.1.s390x", }, }, { category: "product_version", name: "python3-Twisted-17.9.0-150000.3.11.1.s390x", product: { name: "python3-Twisted-17.9.0-150000.3.11.1.s390x", product_id: "python3-Twisted-17.9.0-150000.3.11.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-17.9.0-150000.3.11.1.x86_64", product: { name: "python-Twisted-doc-17.9.0-150000.3.11.1.x86_64", product_id: "python-Twisted-doc-17.9.0-150000.3.11.1.x86_64", }, }, { category: "product_version", name: "python2-Twisted-17.9.0-150000.3.11.1.x86_64", product: { name: "python2-Twisted-17.9.0-150000.3.11.1.x86_64", product_id: "python2-Twisted-17.9.0-150000.3.11.1.x86_64", }, }, { category: "product_version", name: "python3-Twisted-17.9.0-150000.3.11.1.x86_64", product: { name: "python3-Twisted-17.9.0-150000.3.11.1.x86_64", product_id: "python3-Twisted-17.9.0-150000.3.11.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product: { name: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-public-cloud:15:sp1", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python3-Twisted-17.9.0-150000.3.11.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.aarch64", }, product_reference: "python3-Twisted-17.9.0-150000.3.11.1.aarch64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-17.9.0-150000.3.11.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.ppc64le", }, product_reference: "python3-Twisted-17.9.0-150000.3.11.1.ppc64le", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-17.9.0-150000.3.11.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.s390x", }, product_reference: "python3-Twisted-17.9.0-150000.3.11.1.s390x", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, { category: "default_component_of", full_product_name: { name: "python3-Twisted-17.9.0-150000.3.11.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 15 SP1", product_id: "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.x86_64", }, product_reference: "python3-Twisted-17.9.0-150000.3.11.1.x86_64", relates_to_product_reference: "SUSE Linux Enterprise Module for Public Cloud 15 SP1", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-46137", }, ], notes: [ { category: "general", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-46137", url: "https://www.suse.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "SUSE Bug 1216588 for CVE-2023-46137", url: "https://bugzilla.suse.com/1216588", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.aarch64", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.ppc64le", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.s390x", "SUSE Linux Enterprise Module for Public Cloud 15 SP1:python3-Twisted-17.9.0-150000.3.11.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2023-12-14T10:05:53Z", details: "moderate", }, ], title: "CVE-2023-46137", }, ], }
suse-su-2023:4608-1
Vulnerability from csaf_suse
Notes
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Security update for python-Twisted", title: "Title of the patch", }, { category: "description", text: "This update for python-Twisted fixes the following issues:\n\n- CVE-2023-46137: Fixed issue inside serializing pipelined HTTP requests. (bsc#1216588)\n", title: "Description of the patch", }, { category: "details", text: "SUSE-2023-4608,SUSE-SLE-Module-Python3-15-SP4-2023-4608,SUSE-SLE-Module-Python3-15-SP5-2023-4608,openSUSE-SLE-15.4-2023-4608,openSUSE-SLE-15.5-2023-4608", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4608-1.json", }, { category: "self", summary: "URL for SUSE-SU-2023:4608-1", url: "https://www.suse.com/support/update/announcement/2023/suse-su-20234608-1/", }, { category: "self", summary: "E-Mail link for SUSE-SU-2023:4608-1", url: "https://lists.suse.com/pipermail/sle-security-updates/2023-November/017254.html", }, { category: "self", summary: "SUSE Bug 1216588", url: "https://bugzilla.suse.com/1216588", }, { category: "self", summary: "SUSE CVE CVE-2023-46137 page", url: "https://www.suse.com/security/cve/CVE-2023-46137/", }, ], title: "Security update for python-Twisted", tracking: { current_release_date: "2023-11-29T08:59:54Z", generator: { date: "2023-11-29T08:59:54Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "SUSE-SU-2023:4608-1", initial_release_date: "2023-11-29T08:59:54Z", revision_history: [ { date: "2023-11-29T08:59:54Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python311-Twisted-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", }, }, { category: "product_version", name: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", product: { name: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", product_id: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", }, }, ], category: "architecture", name: "noarch", }, { branches: [ { category: "product_name", name: "SUSE Linux Enterprise Module for Python 3 15 SP4", product: { name: "SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-python3:15:sp4", }, }, }, { category: "product_name", name: "SUSE Linux Enterprise Module for Python 3 15 SP5", product: { name: "SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5", product_identification_helper: { cpe: "cpe:/o:suse:sle-module-python3:15:sp5", }, }, }, { category: "product_name", name: "openSUSE Leap 15.4", product: { name: "openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.4", }, }, }, { category: "product_name", name: "openSUSE Leap 15.5", product: { name: "openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5", product_identification_helper: { cpe: "cpe:/o:opensuse:leap:15.5", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP4", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch as component of SUSE Linux Enterprise Module for Python 3 15 SP5", product_id: "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "SUSE Linux Enterprise Module for Python 3 15 SP5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.4", product_id: "openSUSE Leap 15.4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.4", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch as component of openSUSE Leap 15.5", product_id: "openSUSE Leap 15.5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", }, product_reference: "python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", relates_to_product_reference: "openSUSE Leap 15.5", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-46137", }, ], notes: [ { category: "general", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "CVE description", }, ], product_status: { recommended: [ "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", ], }, references: [ { category: "external", summary: "CVE-2023-46137", url: "https://www.suse.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "SUSE Bug 1216588 for CVE-2023-46137", url: "https://bugzilla.suse.com/1216588", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "SUSE Linux Enterprise Module for Python 3 15 SP5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.4:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-all_non_platform-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-conch-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-conch_nacl-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-contextvars-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-http2-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-serial-22.10.0-150400.5.13.1.noarch", "openSUSE Leap 15.5:python311-Twisted-tls-22.10.0-150400.5.13.1.noarch", ], }, ], threats: [ { category: "impact", date: "2023-11-29T08:59:54Z", details: "moderate", }, ], title: "CVE-2023-46137", }, ], }
fkie_cve-2023-46137
Vulnerability from fkie_nvd
5.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
▼ | URL | Tags | |
---|---|---|---|
security-advisories@github.com | https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm | Exploit, Vendor Advisory | |
af854a3a-2127-422b-91ae-364da2661108 | https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm | Exploit, Vendor Advisory |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:twisted:twisted:*:*:*:*:*:*:*:*", matchCriteriaId: "1CEAFE1B-0546-4D6D-AAB6-2EE69DEA1353", versionEndIncluding: "22.8.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", }, { lang: "es", value: "Twisted es un framework basado en eventos para aplicaciones de Internet. Antes de la versión 23.10.0rc1, al enviar múltiples solicitudes HTTP en un paquete TCP, twisted.web procesará las solicitudes de forma asincrónica sin garantizar el orden de respuesta. Si uno de los endpoints está controlado por un atacante, el atacante puede retrasar la respuesta a propósito para manipular la respuesta de la segunda solicitud cuando una víctima lanzó dos solicitudes utilizando una canalización HTTP. La versión 23.10.0rc1 contiene un parche para este problema.", }, ], id: "CVE-2023-46137", lastModified: "2024-11-25T18:12:24.673", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "security-advisories@github.com", type: "Secondary", }, { cvssData: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2023-10-25T21:15:10.237", references: [ { source: "security-advisories@github.com", tags: [ "Exploit", "Vendor Advisory", ], url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Exploit", "Vendor Advisory", ], url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, ], sourceIdentifier: "security-advisories@github.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-444", }, ], source: "security-advisories@github.com", type: "Secondary", }, { description: [ { lang: "en", value: "CWE-444", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
wid-sec-w-2024-0720
Vulnerability from csaf_certbund
Notes
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Red Hat OpenStack ist eine Sammlung von Diensten, um Cloud-Computing in Form von Infrastructure as a Service (IaaS) bereitstellen zu können.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenStack ausnutzen, um Dateien zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Linux", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0720 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0720.json", }, { category: "self", summary: "WID-SEC-2024-0720 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0720", }, { category: "external", summary: "RedHat Security Advisory vom 2024-03-26", url: "https://access.redhat.com/errata/RHSA-2024:1516", }, { category: "external", summary: "RedHat Security Advisory vom 2024-03-26", url: "https://access.redhat.com/errata/RHSA-2024:1518", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1640 vom 2024-04-02", url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], source_lang: "en-US", title: "Red Hat OpenStack: Schwachstelle ermöglicht Manipulation von Dateien", tracking: { current_release_date: "2024-04-02T22:00:00.000+00:00", generator: { date: "2024-08-15T18:06:53.500+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-0720", initial_release_date: "2024-03-26T23:00:00.000+00:00", revision_history: [ { date: "2024-03-26T23:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-04-02T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "2.4", product: { name: "Red Hat Ansible Automation Platform 2.4", product_id: "1496312", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4", }, }, }, ], category: "product_name", name: "Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "16.1", product: { name: "Red Hat OpenStack 16.1", product_id: "849270", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1", }, }, }, { category: "product_version", name: "16.2", product: { name: "Red Hat OpenStack 16.2", product_id: "T020428", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.2", }, }, }, ], category: "product_name", name: "OpenStack", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", notes: [ { category: "description", text: "Es existiert eine Schwachstelle in Red Hat OpenStack. Diese ist auf einen Fehler in der Komponente \"Twisted\" zurückzuführen. Antworten werden asynchron zu Anfragen behandelt, wodurch es möglich ist, Antworten von Nutzern durch spezielle Anfragen zu manipulieren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "849270", "T020428", "1496312", ], }, release_date: "2024-03-26T23:00:00.000+00:00", title: "CVE-2023-46137", }, ], }
WID-SEC-W-2024-0720
Vulnerability from csaf_certbund
Notes
{ document: { aggregate_severity: { text: "mittel", }, category: "csaf_base", csaf_version: "2.0", distribution: { tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "de-DE", notes: [ { category: "legal_disclaimer", text: "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.", }, { category: "description", text: "Red Hat OpenStack ist eine Sammlung von Diensten, um Cloud-Computing in Form von Infrastructure as a Service (IaaS) bereitstellen zu können.", title: "Produktbeschreibung", }, { category: "summary", text: "Ein entfernter, anonymer Angreifer kann eine Schwachstelle in Red Hat OpenStack ausnutzen, um Dateien zu manipulieren.", title: "Angriff", }, { category: "general", text: "- Linux", title: "Betroffene Betriebssysteme", }, ], publisher: { category: "other", contact_details: "csaf-provider@cert-bund.de", name: "Bundesamt für Sicherheit in der Informationstechnik", namespace: "https://www.bsi.bund.de", }, references: [ { category: "self", summary: "WID-SEC-W-2024-0720 - CSAF Version", url: "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0720.json", }, { category: "self", summary: "WID-SEC-2024-0720 - Portal Version", url: "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0720", }, { category: "external", summary: "RedHat Security Advisory vom 2024-03-26", url: "https://access.redhat.com/errata/RHSA-2024:1516", }, { category: "external", summary: "RedHat Security Advisory vom 2024-03-26", url: "https://access.redhat.com/errata/RHSA-2024:1518", }, { category: "external", summary: "Red Hat Security Advisory RHSA-2024:1640 vom 2024-04-02", url: "https://access.redhat.com/errata/RHSA-2024:1640", }, ], source_lang: "en-US", title: "Red Hat OpenStack: Schwachstelle ermöglicht Manipulation von Dateien", tracking: { current_release_date: "2024-04-02T22:00:00.000+00:00", generator: { date: "2024-08-15T18:06:53.500+00:00", engine: { name: "BSI-WID", version: "1.3.5", }, }, id: "WID-SEC-W-2024-0720", initial_release_date: "2024-03-26T23:00:00.000+00:00", revision_history: [ { date: "2024-03-26T23:00:00.000+00:00", number: "1", summary: "Initiale Fassung", }, { date: "2024-04-02T22:00:00.000+00:00", number: "2", summary: "Neue Updates von Red Hat aufgenommen", }, ], status: "final", version: "2", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "2.4", product: { name: "Red Hat Ansible Automation Platform 2.4", product_id: "1496312", product_identification_helper: { cpe: "cpe:/a:redhat:ansible_automation_platform:2.4", }, }, }, ], category: "product_name", name: "Ansible Automation Platform", }, { branches: [ { category: "product_version", name: "16.1", product: { name: "Red Hat OpenStack 16.1", product_id: "849270", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.1", }, }, }, { category: "product_version", name: "16.2", product: { name: "Red Hat OpenStack 16.2", product_id: "T020428", product_identification_helper: { cpe: "cpe:/a:redhat:openstack:16.2", }, }, }, ], category: "product_name", name: "OpenStack", }, ], category: "vendor", name: "Red Hat", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", notes: [ { category: "description", text: "Es existiert eine Schwachstelle in Red Hat OpenStack. Diese ist auf einen Fehler in der Komponente \"Twisted\" zurückzuführen. Antworten werden asynchron zu Anfragen behandelt, wodurch es möglich ist, Antworten von Nutzern durch spezielle Anfragen zu manipulieren. Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um Dateien zu manipulieren.", }, ], product_status: { known_affected: [ "849270", "T020428", "1496312", ], }, release_date: "2024-03-26T23:00:00.000+00:00", title: "CVE-2023-46137", }, ], }
opensuse-su-2024:13430-1
Vulnerability from csaf_opensuse
Notes
{ document: { aggregate_severity: { namespace: "https://www.suse.com/support/security/rating/", text: "moderate", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright 2024 SUSE LLC. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "python-Twisted-doc-22.10.0-9.1 on GA media", title: "Title of the patch", }, { category: "description", text: "These are all security issues fixed in the python-Twisted-doc-22.10.0-9.1 package on the GA media of openSUSE Tumbleweed.", title: "Description of the patch", }, { category: "details", text: "openSUSE-Tumbleweed-2024-13430", title: "Patchnames", }, { category: "legal_disclaimer", text: "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).", title: "Terms of use", }, ], publisher: { category: "vendor", contact_details: "https://www.suse.com/support/security/contact/", name: "SUSE Product Security Team", namespace: "https://www.suse.com/", }, references: [ { category: "external", summary: "SUSE ratings", url: "https://www.suse.com/support/security/rating/", }, { category: "self", summary: "URL of this CSAF notice", url: "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_13430-1.json", }, { category: "self", summary: "SUSE CVE CVE-2023-46137 page", url: "https://www.suse.com/security/cve/CVE-2023-46137/", }, ], title: "python-Twisted-doc-22.10.0-9.1 on GA media", tracking: { current_release_date: "2024-06-15T00:00:00Z", generator: { date: "2024-06-15T00:00:00Z", engine: { name: "cve-database.git:bin/generate-csaf.pl", version: "1", }, }, id: "openSUSE-SU-2024:13430-1", initial_release_date: "2024-06-15T00:00:00Z", revision_history: [ { date: "2024-06-15T00:00:00Z", number: "1", summary: "Current version", }, ], status: "final", version: "1", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_version", name: "python-Twisted-doc-22.10.0-9.1.aarch64", product: { name: "python-Twisted-doc-22.10.0-9.1.aarch64", product_id: "python-Twisted-doc-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-22.10.0-9.1.aarch64", product_id: "python310-Twisted-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", product_id: "python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-conch-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-conch-22.10.0-9.1.aarch64", product_id: "python310-Twisted-conch-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", product_id: "python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-contextvars-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-contextvars-22.10.0-9.1.aarch64", product_id: "python310-Twisted-contextvars-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-http2-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-http2-22.10.0-9.1.aarch64", product_id: "python310-Twisted-http2-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-serial-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-serial-22.10.0-9.1.aarch64", product_id: "python310-Twisted-serial-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python310-Twisted-tls-22.10.0-9.1.aarch64", product: { name: "python310-Twisted-tls-22.10.0-9.1.aarch64", product_id: "python310-Twisted-tls-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-22.10.0-9.1.aarch64", product_id: "python311-Twisted-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", product_id: "python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-conch-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-conch-22.10.0-9.1.aarch64", product_id: "python311-Twisted-conch-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", product_id: "python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-contextvars-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-contextvars-22.10.0-9.1.aarch64", product_id: "python311-Twisted-contextvars-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-http2-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-http2-22.10.0-9.1.aarch64", product_id: "python311-Twisted-http2-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-serial-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-serial-22.10.0-9.1.aarch64", product_id: "python311-Twisted-serial-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python311-Twisted-tls-22.10.0-9.1.aarch64", product: { name: "python311-Twisted-tls-22.10.0-9.1.aarch64", product_id: "python311-Twisted-tls-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-22.10.0-9.1.aarch64", product_id: "python39-Twisted-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", product_id: "python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-conch-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-conch-22.10.0-9.1.aarch64", product_id: "python39-Twisted-conch-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", product_id: "python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-contextvars-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-contextvars-22.10.0-9.1.aarch64", product_id: "python39-Twisted-contextvars-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-http2-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-http2-22.10.0-9.1.aarch64", product_id: "python39-Twisted-http2-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-serial-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-serial-22.10.0-9.1.aarch64", product_id: "python39-Twisted-serial-22.10.0-9.1.aarch64", }, }, { category: "product_version", name: "python39-Twisted-tls-22.10.0-9.1.aarch64", product: { name: "python39-Twisted-tls-22.10.0-9.1.aarch64", product_id: "python39-Twisted-tls-22.10.0-9.1.aarch64", }, }, ], category: "architecture", name: "aarch64", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.10.0-9.1.ppc64le", product: { name: "python-Twisted-doc-22.10.0-9.1.ppc64le", product_id: "python-Twisted-doc-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-conch-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-conch-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-conch-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-contextvars-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-contextvars-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-contextvars-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-http2-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-http2-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-http2-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-serial-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-serial-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-serial-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python310-Twisted-tls-22.10.0-9.1.ppc64le", product: { name: "python310-Twisted-tls-22.10.0-9.1.ppc64le", product_id: "python310-Twisted-tls-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-conch-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-conch-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-conch-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-contextvars-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-contextvars-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-contextvars-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-http2-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-http2-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-http2-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-serial-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-serial-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-serial-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python311-Twisted-tls-22.10.0-9.1.ppc64le", product: { name: "python311-Twisted-tls-22.10.0-9.1.ppc64le", product_id: "python311-Twisted-tls-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-conch-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-conch-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-conch-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-contextvars-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-contextvars-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-contextvars-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-http2-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-http2-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-http2-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-serial-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-serial-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-serial-22.10.0-9.1.ppc64le", }, }, { category: "product_version", name: "python39-Twisted-tls-22.10.0-9.1.ppc64le", product: { name: "python39-Twisted-tls-22.10.0-9.1.ppc64le", product_id: "python39-Twisted-tls-22.10.0-9.1.ppc64le", }, }, ], category: "architecture", name: "ppc64le", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.10.0-9.1.s390x", product: { name: "python-Twisted-doc-22.10.0-9.1.s390x", product_id: "python-Twisted-doc-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-22.10.0-9.1.s390x", product: { name: "python310-Twisted-22.10.0-9.1.s390x", product_id: "python310-Twisted-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-all_non_platform-22.10.0-9.1.s390x", product: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.s390x", product_id: "python310-Twisted-all_non_platform-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-conch-22.10.0-9.1.s390x", product: { name: "python310-Twisted-conch-22.10.0-9.1.s390x", product_id: "python310-Twisted-conch-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-conch_nacl-22.10.0-9.1.s390x", product: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.s390x", product_id: "python310-Twisted-conch_nacl-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-contextvars-22.10.0-9.1.s390x", product: { name: "python310-Twisted-contextvars-22.10.0-9.1.s390x", product_id: "python310-Twisted-contextvars-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-http2-22.10.0-9.1.s390x", product: { name: "python310-Twisted-http2-22.10.0-9.1.s390x", product_id: "python310-Twisted-http2-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-serial-22.10.0-9.1.s390x", product: { name: "python310-Twisted-serial-22.10.0-9.1.s390x", product_id: "python310-Twisted-serial-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python310-Twisted-tls-22.10.0-9.1.s390x", product: { name: "python310-Twisted-tls-22.10.0-9.1.s390x", product_id: "python310-Twisted-tls-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-22.10.0-9.1.s390x", product: { name: "python311-Twisted-22.10.0-9.1.s390x", product_id: "python311-Twisted-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-all_non_platform-22.10.0-9.1.s390x", product: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.s390x", product_id: "python311-Twisted-all_non_platform-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-conch-22.10.0-9.1.s390x", product: { name: "python311-Twisted-conch-22.10.0-9.1.s390x", product_id: "python311-Twisted-conch-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-conch_nacl-22.10.0-9.1.s390x", product: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.s390x", product_id: "python311-Twisted-conch_nacl-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-contextvars-22.10.0-9.1.s390x", product: { name: "python311-Twisted-contextvars-22.10.0-9.1.s390x", product_id: "python311-Twisted-contextvars-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-http2-22.10.0-9.1.s390x", product: { name: "python311-Twisted-http2-22.10.0-9.1.s390x", product_id: "python311-Twisted-http2-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-serial-22.10.0-9.1.s390x", product: { name: "python311-Twisted-serial-22.10.0-9.1.s390x", product_id: "python311-Twisted-serial-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python311-Twisted-tls-22.10.0-9.1.s390x", product: { name: "python311-Twisted-tls-22.10.0-9.1.s390x", product_id: "python311-Twisted-tls-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-22.10.0-9.1.s390x", product: { name: "python39-Twisted-22.10.0-9.1.s390x", product_id: "python39-Twisted-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-all_non_platform-22.10.0-9.1.s390x", product: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.s390x", product_id: "python39-Twisted-all_non_platform-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-conch-22.10.0-9.1.s390x", product: { name: "python39-Twisted-conch-22.10.0-9.1.s390x", product_id: "python39-Twisted-conch-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-conch_nacl-22.10.0-9.1.s390x", product: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.s390x", product_id: "python39-Twisted-conch_nacl-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-contextvars-22.10.0-9.1.s390x", product: { name: "python39-Twisted-contextvars-22.10.0-9.1.s390x", product_id: "python39-Twisted-contextvars-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-http2-22.10.0-9.1.s390x", product: { name: "python39-Twisted-http2-22.10.0-9.1.s390x", product_id: "python39-Twisted-http2-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-serial-22.10.0-9.1.s390x", product: { name: "python39-Twisted-serial-22.10.0-9.1.s390x", product_id: "python39-Twisted-serial-22.10.0-9.1.s390x", }, }, { category: "product_version", name: "python39-Twisted-tls-22.10.0-9.1.s390x", product: { name: "python39-Twisted-tls-22.10.0-9.1.s390x", product_id: "python39-Twisted-tls-22.10.0-9.1.s390x", }, }, ], category: "architecture", name: "s390x", }, { branches: [ { category: "product_version", name: "python-Twisted-doc-22.10.0-9.1.x86_64", product: { name: "python-Twisted-doc-22.10.0-9.1.x86_64", product_id: "python-Twisted-doc-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-22.10.0-9.1.x86_64", product_id: "python310-Twisted-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", product_id: "python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-conch-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-conch-22.10.0-9.1.x86_64", product_id: "python310-Twisted-conch-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", product_id: "python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-contextvars-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-contextvars-22.10.0-9.1.x86_64", product_id: "python310-Twisted-contextvars-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-http2-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-http2-22.10.0-9.1.x86_64", product_id: "python310-Twisted-http2-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-serial-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-serial-22.10.0-9.1.x86_64", product_id: "python310-Twisted-serial-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python310-Twisted-tls-22.10.0-9.1.x86_64", product: { name: "python310-Twisted-tls-22.10.0-9.1.x86_64", product_id: "python310-Twisted-tls-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-22.10.0-9.1.x86_64", product_id: "python311-Twisted-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", product_id: "python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-conch-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-conch-22.10.0-9.1.x86_64", product_id: "python311-Twisted-conch-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", product_id: "python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-contextvars-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-contextvars-22.10.0-9.1.x86_64", product_id: "python311-Twisted-contextvars-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-http2-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-http2-22.10.0-9.1.x86_64", product_id: "python311-Twisted-http2-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-serial-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-serial-22.10.0-9.1.x86_64", product_id: "python311-Twisted-serial-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python311-Twisted-tls-22.10.0-9.1.x86_64", product: { name: "python311-Twisted-tls-22.10.0-9.1.x86_64", product_id: "python311-Twisted-tls-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-22.10.0-9.1.x86_64", product_id: "python39-Twisted-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", product_id: "python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-conch-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-conch-22.10.0-9.1.x86_64", product_id: "python39-Twisted-conch-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", product_id: "python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-contextvars-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-contextvars-22.10.0-9.1.x86_64", product_id: "python39-Twisted-contextvars-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-http2-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-http2-22.10.0-9.1.x86_64", product_id: "python39-Twisted-http2-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-serial-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-serial-22.10.0-9.1.x86_64", product_id: "python39-Twisted-serial-22.10.0-9.1.x86_64", }, }, { category: "product_version", name: "python39-Twisted-tls-22.10.0-9.1.x86_64", product: { name: "python39-Twisted-tls-22.10.0-9.1.x86_64", product_id: "python39-Twisted-tls-22.10.0-9.1.x86_64", }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_name", name: "openSUSE Tumbleweed", product: { name: "openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed", product_identification_helper: { cpe: "cpe:/o:opensuse:tumbleweed", }, }, }, ], category: "product_family", name: "SUSE Linux Enterprise", }, ], category: "vendor", name: "SUSE", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "python-Twisted-doc-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.aarch64", }, product_reference: "python-Twisted-doc-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Twisted-doc-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.ppc64le", }, product_reference: "python-Twisted-doc-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Twisted-doc-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.s390x", }, product_reference: "python-Twisted-doc-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python-Twisted-doc-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.x86_64", }, product_reference: "python-Twisted-doc-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-all_non_platform-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-all_non_platform-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-conch-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-conch-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-conch-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-conch-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-conch_nacl-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-conch_nacl-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-contextvars-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-contextvars-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-contextvars-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-contextvars-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-contextvars-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-contextvars-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-contextvars-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-contextvars-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-http2-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-http2-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-http2-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-http2-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-http2-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-http2-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-http2-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-http2-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-serial-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-serial-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-serial-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-serial-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-serial-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-serial-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-serial-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-serial-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-tls-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.aarch64", }, product_reference: "python310-Twisted-tls-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-tls-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.ppc64le", }, product_reference: "python310-Twisted-tls-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-tls-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.s390x", }, product_reference: "python310-Twisted-tls-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python310-Twisted-tls-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.x86_64", }, product_reference: "python310-Twisted-tls-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-all_non_platform-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-conch-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-conch-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-conch-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-conch-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-conch_nacl-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-contextvars-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-contextvars-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-contextvars-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-contextvars-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-contextvars-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-http2-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-http2-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-http2-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-http2-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-http2-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-serial-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-serial-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-serial-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-serial-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-serial-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.aarch64", }, product_reference: "python311-Twisted-tls-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.ppc64le", }, product_reference: "python311-Twisted-tls-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.s390x", }, product_reference: "python311-Twisted-tls-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python311-Twisted-tls-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.x86_64", }, product_reference: "python311-Twisted-tls-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-all_non_platform-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-all_non_platform-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-conch-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-conch-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-conch-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-conch-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-conch_nacl-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-conch_nacl-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-contextvars-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-contextvars-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-contextvars-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-contextvars-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-contextvars-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-contextvars-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-contextvars-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-contextvars-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-http2-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-http2-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-http2-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-http2-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-http2-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-http2-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-http2-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-http2-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-serial-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-serial-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-serial-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-serial-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-serial-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-serial-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-serial-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-serial-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-tls-22.10.0-9.1.aarch64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.aarch64", }, product_reference: "python39-Twisted-tls-22.10.0-9.1.aarch64", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-tls-22.10.0-9.1.ppc64le as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.ppc64le", }, product_reference: "python39-Twisted-tls-22.10.0-9.1.ppc64le", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-tls-22.10.0-9.1.s390x as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.s390x", }, product_reference: "python39-Twisted-tls-22.10.0-9.1.s390x", relates_to_product_reference: "openSUSE Tumbleweed", }, { category: "default_component_of", full_product_name: { name: "python39-Twisted-tls-22.10.0-9.1.x86_64 as component of openSUSE Tumbleweed", product_id: "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.x86_64", }, product_reference: "python39-Twisted-tls-22.10.0-9.1.x86_64", relates_to_product_reference: "openSUSE Tumbleweed", }, ], }, vulnerabilities: [ { cve: "CVE-2023-46137", ids: [ { system_name: "SUSE CVE Page", text: "https://www.suse.com/security/cve/CVE-2023-46137", }, ], notes: [ { category: "general", text: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", title: "CVE description", }, ], product_status: { recommended: [ "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.x86_64", ], }, references: [ { category: "external", summary: "CVE-2023-46137", url: "https://www.suse.com/security/cve/CVE-2023-46137", }, { category: "external", summary: "SUSE Bug 1216588 for CVE-2023-46137", url: "https://bugzilla.suse.com/1216588", }, ], remediations: [ { category: "vendor_fix", details: "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n", product_ids: [ "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.x86_64", ], }, ], scores: [ { cvss_v3: { baseScore: 5.9, baseSeverity: "MEDIUM", vectorString: "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", version: "3.1", }, products: [ "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python-Twisted-doc-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python310-Twisted-tls-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python311-Twisted-tls-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-all_non_platform-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-conch-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-conch_nacl-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-contextvars-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-http2-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-serial-22.10.0-9.1.x86_64", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.aarch64", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.ppc64le", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.s390x", "openSUSE Tumbleweed:python39-Twisted-tls-22.10.0-9.1.x86_64", ], }, ], threats: [ { category: "impact", date: "2024-06-15T00:00:00Z", details: "moderate", }, ], title: "CVE-2023-46137", }, ], }
gsd-2023-46137
Vulnerability from gsd
{ GSD: { alias: "CVE-2023-46137", id: "GSD-2023-46137", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2023-46137", ], details: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", id: "GSD-2023-46137", modified: "2023-12-13T01:20:53.075147Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2023-46137", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "twisted", version: { version_data: [ { version_affected: "=", version_value: "23.10.0rc1", }, ], }, }, ], }, vendor_name: "twisted", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", }, ], }, impact: { cvss: [ { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { cweId: "CWE-444", lang: "eng", value: "CWE-444: Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", refsource: "MISC", url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, ], }, source: { advisory: "GHSA-xc8x-vp79-p3wm", discovery: "UNKNOWN", }, }, "nvd.nist.gov": { configurations: { CVE_data_version: "4.0", nodes: [ { children: [], cpe_match: [ { cpe23Uri: "cpe:2.3:a:twistedmatrix:twisted:*:*:*:*:*:*:*:*", cpe_name: [], versionEndIncluding: "22.8.0", vulnerable: true, }, ], operator: "OR", }, ], }, cve: { CVE_data_meta: { ASSIGNER: "security-advisories@github.com", ID: "CVE-2023-46137", }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "en", value: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "en", value: "CWE-444", }, ], }, ], }, references: { reference_data: [ { name: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", refsource: "MISC", tags: [ "Exploit", "Vendor Advisory", ], url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, ], }, }, impact: { baseMetricV3: { cvssV3: { attackComplexity: "LOW", attackVector: "NETWORK", availabilityImpact: "NONE", baseScore: 5.3, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "LOW", privilegesRequired: "NONE", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", version: "3.1", }, exploitabilityScore: 3.9, impactScore: 1.4, }, }, lastModifiedDate: "2023-11-02T15:57Z", publishedDate: "2023-10-25T21:15Z", }, }, }
pysec-2023-224
Vulnerability from pysec
Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.
Name | purl |
---|---|
twisted | pkg:pypi/twisted |
{ affected: [ { package: { ecosystem: "PyPI", name: "twisted", purl: "pkg:pypi/twisted", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "23.10.0rc1", }, ], type: "ECOSYSTEM", }, ], versions: [ "1.0.1", "1.0.3", "1.0.4", "1.0.5", "1.0.6", "1.0.7", "1.1.0", "1.1.1", "1.2.0", "10.0.0", "10.1.0", "10.2.0", "11.0.0", "11.1.0", "12.0.0", "12.1.0", "12.2.0", "12.3.0", "13.0.0", "13.1.0", "13.2.0", "14.0.0", "14.0.1", "14.0.2", "15.0.0", "15.1.0", "15.2.0", "15.2.1", "15.3.0", "15.4.0", "15.5.0", "16.0.0", "16.1.0", "16.1.1", "16.2.0", "16.3.0", "16.3.1", "16.3.2", "16.4.0", "16.4.1", "16.5.0", "16.5.0rc1", "16.5.0rc2", "16.6.0", "16.6.0rc1", "16.7.0rc1", "16.7.0rc2", "17.1.0", "17.1.0rc1", "17.5.0", "17.9.0", "17.9.0rc1", "18.4.0", "18.4.0rc1", "18.7.0", "18.7.0rc1", "18.7.0rc2", "18.9.0", "18.9.0rc1", "19.10.0", "19.10.0rc1", "19.2.0", "19.2.0rc1", "19.2.0rc2", "19.2.1", "19.7.0", "19.7.0rc1", "2.1.0", "2.4.0", "2.5.0", "20.3.0", "20.3.0rc1", "21.2.0", "21.2.0rc1", "21.7.0", "21.7.0rc1", "21.7.0rc2", "21.7.0rc3", "22.1.0", "22.1.0rc1", "22.2.0", "22.2.0rc1", "22.4.0", "22.4.0rc1", "22.8.0", "22.8.0rc1", "22.8.0", "22.10.0rc1", "22.10.0", "23.8.0rc1", "23.8.0", "8.0.0", "8.0.1", "8.1.0", "8.2.0", "9.0.0", ], }, ], aliases: [ "CVE-2023-46137", "GHSA-xc8x-vp79-p3wm", ], details: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.", id: "PYSEC-2023-224", modified: "2023-11-02T16:33:16.395026+00:00", published: "2023-10-25T21:15:00+00:00", references: [ { type: "EVIDENCE", url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, { type: "ADVISORY", url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, ], severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", type: "CVSS_V3", }, ], }
ghsa-xc8x-vp79-p3wm
Vulnerability from github
6.9 (Medium) - CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.
Details
There's an example faulty program: ```python from twisted.internet import reactor, endpoints from twisted.web import server from twisted.web.proxy import ReverseProxyResource from twisted.web.resource import Resource
class Second(Resource): isLeaf = True def render_GET(self, request): return b'SECOND\n'
class First(Resource): isLeaf = True def render_GET(self, request): def send_response(): request.write(b'FIRST DELAYED\n') request.finish() reactor.callLater(0.5, send_response) return server.NOT_DONE_YET
root = Resource()
root.putChild(b'second', Second()) root.putChild(b'first', First())
endpoint = endpoints.TCP4ServerEndpoint(reactor, 8080) endpoint.listen(server.Site(root)) reactor.run() ```
When two requests for /first
and /second
are sent in the same order, the second request will be responded to first.
shell
echo -en "GET /first HTTP/1.1\r\nHost: a\r\n\r\nGET /second HTTP/1.1\r\nHost: a\r\n\r\n" | nc localhost 8080
{ affected: [ { package: { ecosystem: "PyPI", name: "Twisted", }, ranges: [ { events: [ { introduced: "0", }, { fixed: "23.10.0rc1", }, ], type: "ECOSYSTEM", }, ], }, ], aliases: [ "CVE-2023-46137", ], database_specific: { cwe_ids: [ "CWE-444", ], github_reviewed: true, github_reviewed_at: "2023-10-25T21:15:13Z", nvd_published_at: "2023-10-25T21:15:10Z", severity: "MODERATE", }, details: "Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, the attacker can delay the response on purpose to manipulate the response of the second request when a victim launched two requests using HTTP pipeline. Version 23.10.0rc1 contains a patch for this issue.\n\n### Details\nThere's an example faulty program:\n```python\nfrom twisted.internet import reactor, endpoints\nfrom twisted.web import server\nfrom twisted.web.proxy import ReverseProxyResource\nfrom twisted.web.resource import Resource\n\nclass Second(Resource):\n isLeaf = True\n def render_GET(self, request):\n return b'SECOND\\n'\n\nclass First(Resource):\n isLeaf = True\n def render_GET(self, request):\n def send_response():\n request.write(b'FIRST DELAYED\\n')\n request.finish()\n reactor.callLater(0.5, send_response)\n return server.NOT_DONE_YET\n\nroot = Resource()\n\nroot.putChild(b'second', Second())\nroot.putChild(b'first', First())\n\nendpoint = endpoints.TCP4ServerEndpoint(reactor, 8080)\nendpoint.listen(server.Site(root))\nreactor.run()\n```\n\nWhen two requests for `/first` and `/second` are sent in the same order, the second request will be responded to first.\n```shell\necho -en \"GET /first HTTP/1.1\\r\\nHost: a\\r\\n\\r\\nGET /second HTTP/1.1\\r\\nHost: a\\r\\n\\r\\n\" | nc localhost 8080\n```", id: "GHSA-xc8x-vp79-p3wm", modified: "2024-11-18T23:16:54Z", published: "2023-10-25T21:15:13Z", references: [ { type: "WEB", url: "https://github.com/twisted/twisted/security/advisories/GHSA-xc8x-vp79-p3wm", }, { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2023-46137", }, { type: "WEB", url: "https://github.com/pypa/advisory-database/tree/main/vulns/twisted/PYSEC-2023-224.yaml", }, { type: "PACKAGE", url: "https://github.com/twisted/twisted", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", type: "CVSS_V3", }, { score: "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N", type: "CVSS_V4", }, ], summary: "twisted.web has disordered HTTP pipeline response", }
Log in or create an account to share your comment.
This schema specifies the format of a comment related to a security advisory.
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.