Action not permitted
Modal body text goes here.
cve-2024-28863
Vulnerability from cvelistv5
Published
2024-03-21 22:10
Modified
2024-08-02 13:53
Severity ?
EPSS score ?
Summary
node-tar vulnerable to denial of service while parsing a tar file due to lack of folders count validation
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T00:56:58.545Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"name": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7",
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:node-tar_project:node-tar:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "node-tar",
"vendor": "node-tar_project",
"versions": [
{
"lessThan": "6.2.1",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"other": {
"content": {
"id": "CVE-2024-28863",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-03-22T14:55:49.306359Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-08-02T13:53:49.389Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "node-tar",
"vendor": "isaacs",
"versions": [
{
"status": "affected",
"version": "\u003c 6.2.1"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-400",
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en",
"type": "CWE"
}
]
},
{
"descriptions": [
{
"cweId": "CWE-770",
"description": "CWE-770: Allocation of Resources Without Limits or Throttling",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-03-21T22:10:23.603Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"name": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7",
"tags": [
"x_refsource_MISC"
],
"url": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"source": {
"advisory": "GHSA-f5x3-32g6-xq36",
"discovery": "UNKNOWN"
},
"title": "node-tar vulnerable to denial of service while parsing a tar file due to lack of folders count validation"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2024-28863",
"datePublished": "2024-03-21T22:10:23.603Z",
"dateReserved": "2024-03-11T22:45:07.686Z",
"dateUpdated": "2024-08-02T13:53:49.389Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2024-28863\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2024-03-21T23:15:10.910\",\"lastModified\":\"2024-06-10T17:16:24.773\",\"vulnStatus\":\"Awaiting Analysis\",\"descriptions\":[{\"lang\":\"en\",\"value\":\"node-tar is a Tar for Node.js. node-tar prior to version 6.2.1 has no limit on the number of sub-folders created in the folder creation process. An attacker who generates a large number of sub-folders can consume memory on the system running node-tar and even crash the Node.js client within few seconds of running it using a path with too many sub-folders inside. Version 6.2.1 fixes this issue by preventing extraction in excessively deep sub-folders.\"},{\"lang\":\"es\",\"value\":\"node-tar es un Tar para Node.js. Node-tar anterior a la versi\u00f3n 6.2.1 no tiene l\u00edmite en la cantidad de subcarpetas creadas en el proceso de creaci\u00f3n de carpetas. Un atacante que genera una gran cantidad de subcarpetas puede consumir memoria en el sistema que ejecuta node-tar e incluso bloquear el cliente Node.js a los pocos segundos de ejecutarlo usando una ruta con demasiadas subcarpetas dentro. La versi\u00f3n 6.2.1 soluciona este problema impidiendo la extracci\u00f3n en subcarpetas excesivamente profundas.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-400\"},{\"lang\":\"en\",\"value\":\"CWE-770\"}]}],\"references\":[{\"url\":\"https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36\",\"source\":\"security-advisories@github.com\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240524-0005/\",\"source\":\"security-advisories@github.com\"}]}}"
}
}
ghsa-f5x3-32g6-xq36
Vulnerability from github
Published
2024-03-22 16:57
Modified
2024-06-10 18:30
Severity ?
Summary
Denial of service while parsing a tar file due to lack of folders count validation
Details
Description:
During some analysis today on npm's node-tar package I came across the folder creation process, Basicly if you provide node-tar with a path like this ./a/b/c/foo.txt it would create every folder and sub-folder here a, b and c until it reaches the last folder to create foo.txt, In-this case I noticed that there's no validation at all on the amount of folders being created, that said we're actually able to CPU and memory consume the system running node-tar and even crash the nodejs client within few seconds of running it using a path with too many sub-folders inside
Steps To Reproduce:
You can reproduce this issue by downloading the tar file I provided in the resources and using node-tar to extract it, you should get the same behavior as the video
Proof Of Concept:
Here's a video show-casing the exploit:
Impact
Denial of service by crashing the nodejs client when attempting to parse a tar archive, make it run out of heap memory and consuming server CPU and memory resources
Report resources
Note
This report was originally reported to GitHub bug bounty program, they asked me to report it to you a month ago
{
"affected": [
{
"package": {
"ecosystem": "npm",
"name": "node-tar"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.2.1"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "npm",
"name": "tar"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "6.2.1"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2024-28863"
],
"database_specific": {
"cwe_ids": [
"CWE-400"
],
"github_reviewed": true,
"github_reviewed_at": "2024-03-22T16:57:05Z",
"nvd_published_at": "2024-03-21T23:15:10Z",
"severity": "MODERATE"
},
"details": "## Description: \nDuring some analysis today on npm\u0027s `node-tar` package I came across the folder creation process, Basicly if you provide node-tar with a path like this `./a/b/c/foo.txt` it would create every folder and sub-folder here a, b and c until it reaches the last folder to create `foo.txt`, In-this case I noticed that there\u0027s no validation at all on the amount of folders being created, that said we\u0027re actually able to CPU and memory consume the system running node-tar and even crash the nodejs client within few seconds of running it using a path with too many sub-folders inside\n\n## Steps To Reproduce:\nYou can reproduce this issue by downloading the tar file I provided in the resources and using node-tar to extract it, you should get the same behavior as the video\n\n## Proof Of Concept:\nHere\u0027s a [video](https://hackerone-us-west-2-production-attachments.s3.us-west-2.amazonaws.com/3i7uojw8s52psar6pg8zkdo4h9io?response-content-disposition=attachment%3B%20filename%3D%22tar-dos-poc.webm%22%3B%20filename%2A%3DUTF-8%27%27tar-dos-poc.webm\u0026response-content-type=video%2Fwebm\u0026X-Amz-Algorithm=AWS4-HMAC-SHA256\u0026X-Amz-Credential=ASIAQGK6FURQSWWGDXHA%2F20240312%2Fus-west-2%2Fs3%2Faws4_request\u0026X-Amz-Date=20240312T080103Z\u0026X-Amz-Expires=3600\u0026X-Amz-Security-Token=IQoJb3JpZ2luX2VjEDcaCXVzLXdlc3QtMiJHMEUCID3xYDc6emXVPOg8iVR5dVk0u3gguTPIDJ0OIE%2BKxj17AiEAi%2BGiay1gGMWhH%2F031fvMYnSsa8U7CnpZpxvFAYqNRwgqsQUIQBADGgwwMTM2MTkyNzQ4NDkiDAaj6OgUL3gg4hhLLCqOBUUrOgWSqaK%2FmxN6nKRvB4Who3LIyzswFKm9LV94GiSVFP3zXYA480voCmAHTg7eBL7%2BrYgV2RtXbhF4aCFMCN3qu7GeXkIdH7xwVMi9zXHkekviSKZ%2FsZtVVjn7RFqOCKhJl%2FCoiLQJuDuju%2FtfdTGZbEbGsPgKHoILYbRp81K51zeRL21okjsOehmypkZzq%2BoGrXIX0ynPOKujxw27uqdF4T%2BF9ynodq01vGgwgVBEjHojc4OKOfr1oW5b%2FtGVV59%2BOBVI1hqIKHRG0Ed4SWmp%2BLd1hazGuZPvp52szmegnOj5qr3ubppnKL242bX%2FuAnQKzKK0HpwolqXjsuEeFeM85lxhqHV%2B1BJqaqSHHDa0HUMLZistMRshRlntuchcFQCR6HBa2c8PSnhpVC31zMzvYMfKsI12h4HB6l%2FudrmNrvmH4LmNpi4dZFcio21DzKj%2FRjWmxjH7l8egDyG%2FIgPMY6Ls4IiN7aR1jijYTrBCgPUUHets3BFvqLzHtPFnG3B7%2FYRPnhCLu%2FgzvKN3F8l38KqeTNMHJaxkuhCvEjpFB2SJbi2QZqZZbLj3xASqXoogzbsyPp0Tzp0tH7EKDhPA7H6wwiZukXfFhhlYzP8on9fO2Ajz%2F%2BTDkDjbfWw4KNJ0cFeDsGrUspqQZb5TAKlUge7iOZEc2TZ5uagatSy9Mg08E4nImBSE5QUHDc7Daya1gyqrETMDZBBUHH2RFkGA9qMpEtNrtJ9G%2BPedz%2FpPY1hh9OCp9Pg1BrX97l3SfVzlAMRfNibhywq6qnE35rVnZi%2BEQ1UgBjs9jD%2FQrW49%2FaD0oUDojVeuFFryzRnQxDbKtYgonRcItTvLT5Y0xaK9P0u6H1197%2FMk3XxmjD9%2Fb%2BvBjqxAQWWkKiIxpC1oHEWK9Jt8UdJ39xszDBGpBqjB6Tvt5ePAXSyX8np%2FrBi%2BAPx06O0%2Ba7pU4NmH800EVXxxhgfj9nMw3CeoUIdxorVKtU2Mxw%2FLaAiPgxPS4rqkt65NF7eQYfegcSYDTm2Z%2BHPbz9HfCaVZ28Zqeko6sR%2F29ML4bguqVvHAM4mWPLNDXH33mjG%2BuzLi8e1BF7tNveg2X9G%2FRdcMkojwKYbu6xN3M6aX2alQg%3D%3D\u0026X-Amz-SignedHeaders=host\u0026X-Amz-Signature=1e8235d885f1d61529b7d6b23ea3a0780c300c91d86e925dd8310d5b661ddbe2) show-casing the exploit: \n\n## Impact\n\nDenial of service by crashing the nodejs client when attempting to parse a tar archive, make it run out of heap memory and consuming server CPU and memory resources\n\n## Report resources\n[payload.txt](https://hackerone-us-west-2-production-attachments.s3.us-west-2.amazonaws.com/1e83ayb5dd3350fvj3gst0mqixwk?response-content-disposition=attachment%3B%20filename%3D%22payload.txt%22%3B%20filename%2A%3DUTF-8%27%27payload.txt\u0026response-content-type=text%2Fplain\u0026X-Amz-Algorithm=AWS4-HMAC-SHA256\u0026X-Amz-Credential=ASIAQGK6FURQSWWGDXHA%2F20240312%2Fus-west-2%2Fs3%2Faws4_request\u0026X-Amz-Date=20240312T080103Z\u0026X-Amz-Expires=3600\u0026X-Amz-Security-Token=IQoJb3JpZ2luX2VjEDcaCXVzLXdlc3QtMiJHMEUCID3xYDc6emXVPOg8iVR5dVk0u3gguTPIDJ0OIE%2BKxj17AiEAi%2BGiay1gGMWhH%2F031fvMYnSsa8U7CnpZpxvFAYqNRwgqsQUIQBADGgwwMTM2MTkyNzQ4NDkiDAaj6OgUL3gg4hhLLCqOBUUrOgWSqaK%2FmxN6nKRvB4Who3LIyzswFKm9LV94GiSVFP3zXYA480voCmAHTg7eBL7%2BrYgV2RtXbhF4aCFMCN3qu7GeXkIdH7xwVMi9zXHkekviSKZ%2FsZtVVjn7RFqOCKhJl%2FCoiLQJuDuju%2FtfdTGZbEbGsPgKHoILYbRp81K51zeRL21okjsOehmypkZzq%2BoGrXIX0ynPOKujxw27uqdF4T%2BF9ynodq01vGgwgVBEjHojc4OKOfr1oW5b%2FtGVV59%2BOBVI1hqIKHRG0Ed4SWmp%2BLd1hazGuZPvp52szmegnOj5qr3ubppnKL242bX%2FuAnQKzKK0HpwolqXjsuEeFeM85lxhqHV%2B1BJqaqSHHDa0HUMLZistMRshRlntuchcFQCR6HBa2c8PSnhpVC31zMzvYMfKsI12h4HB6l%2FudrmNrvmH4LmNpi4dZFcio21DzKj%2FRjWmxjH7l8egDyG%2FIgPMY6Ls4IiN7aR1jijYTrBCgPUUHets3BFvqLzHtPFnG3B7%2FYRPnhCLu%2FgzvKN3F8l38KqeTNMHJaxkuhCvEjpFB2SJbi2QZqZZbLj3xASqXoogzbsyPp0Tzp0tH7EKDhPA7H6wwiZukXfFhhlYzP8on9fO2Ajz%2F%2BTDkDjbfWw4KNJ0cFeDsGrUspqQZb5TAKlUge7iOZEc2TZ5uagatSy9Mg08E4nImBSE5QUHDc7Daya1gyqrETMDZBBUHH2RFkGA9qMpEtNrtJ9G%2BPedz%2FpPY1hh9OCp9Pg1BrX97l3SfVzlAMRfNibhywq6qnE35rVnZi%2BEQ1UgBjs9jD%2FQrW49%2FaD0oUDojVeuFFryzRnQxDbKtYgonRcItTvLT5Y0xaK9P0u6H1197%2FMk3XxmjD9%2Fb%2BvBjqxAQWWkKiIxpC1oHEWK9Jt8UdJ39xszDBGpBqjB6Tvt5ePAXSyX8np%2FrBi%2BAPx06O0%2Ba7pU4NmH800EVXxxhgfj9nMw3CeoUIdxorVKtU2Mxw%2FLaAiPgxPS4rqkt65NF7eQYfegcSYDTm2Z%2BHPbz9HfCaVZ28Zqeko6sR%2F29ML4bguqVvHAM4mWPLNDXH33mjG%2BuzLi8e1BF7tNveg2X9G%2FRdcMkojwKYbu6xN3M6aX2alQg%3D%3D\u0026X-Amz-SignedHeaders=host\u0026X-Amz-Signature=bad9fe731f05a63a950f99828125653a8c1254750fe0ca7be882e89ecdd449ae)\n[archeive.tar.gz](https://hackerone-us-west-2-production-attachments.s3.us-west-2.amazonaws.com/ymkuh4xnfdcf1soeyi7jc2x4yt2i?response-content-disposition=attachment%3B%20filename%3D%22archive.tar.gz%22%3B%20filename%2A%3DUTF-8%27%27archive.tar.gz\u0026response-content-type=application%2Fx-tar\u0026X-Amz-Algorithm=AWS4-HMAC-SHA256\u0026X-Amz-Credential=ASIAQGK6FURQSWWGDXHA%2F20240312%2Fus-west-2%2Fs3%2Faws4_request\u0026X-Amz-Date=20240312T080103Z\u0026X-Amz-Expires=3600\u0026X-Amz-Security-Token=IQoJb3JpZ2luX2VjEDcaCXVzLXdlc3QtMiJHMEUCID3xYDc6emXVPOg8iVR5dVk0u3gguTPIDJ0OIE%2BKxj17AiEAi%2BGiay1gGMWhH%2F031fvMYnSsa8U7CnpZpxvFAYqNRwgqsQUIQBADGgwwMTM2MTkyNzQ4NDkiDAaj6OgUL3gg4hhLLCqOBUUrOgWSqaK%2FmxN6nKRvB4Who3LIyzswFKm9LV94GiSVFP3zXYA480voCmAHTg7eBL7%2BrYgV2RtXbhF4aCFMCN3qu7GeXkIdH7xwVMi9zXHkekviSKZ%2FsZtVVjn7RFqOCKhJl%2FCoiLQJuDuju%2FtfdTGZbEbGsPgKHoILYbRp81K51zeRL21okjsOehmypkZzq%2BoGrXIX0ynPOKujxw27uqdF4T%2BF9ynodq01vGgwgVBEjHojc4OKOfr1oW5b%2FtGVV59%2BOBVI1hqIKHRG0Ed4SWmp%2BLd1hazGuZPvp52szmegnOj5qr3ubppnKL242bX%2FuAnQKzKK0HpwolqXjsuEeFeM85lxhqHV%2B1BJqaqSHHDa0HUMLZistMRshRlntuchcFQCR6HBa2c8PSnhpVC31zMzvYMfKsI12h4HB6l%2FudrmNrvmH4LmNpi4dZFcio21DzKj%2FRjWmxjH7l8egDyG%2FIgPMY6Ls4IiN7aR1jijYTrBCgPUUHets3BFvqLzHtPFnG3B7%2FYRPnhCLu%2FgzvKN3F8l38KqeTNMHJaxkuhCvEjpFB2SJbi2QZqZZbLj3xASqXoogzbsyPp0Tzp0tH7EKDhPA7H6wwiZukXfFhhlYzP8on9fO2Ajz%2F%2BTDkDjbfWw4KNJ0cFeDsGrUspqQZb5TAKlUge7iOZEc2TZ5uagatSy9Mg08E4nImBSE5QUHDc7Daya1gyqrETMDZBBUHH2RFkGA9qMpEtNrtJ9G%2BPedz%2FpPY1hh9OCp9Pg1BrX97l3SfVzlAMRfNibhywq6qnE35rVnZi%2BEQ1UgBjs9jD%2FQrW49%2FaD0oUDojVeuFFryzRnQxDbKtYgonRcItTvLT5Y0xaK9P0u6H1197%2FMk3XxmjD9%2Fb%2BvBjqxAQWWkKiIxpC1oHEWK9Jt8UdJ39xszDBGpBqjB6Tvt5ePAXSyX8np%2FrBi%2BAPx06O0%2Ba7pU4NmH800EVXxxhgfj9nMw3CeoUIdxorVKtU2Mxw%2FLaAiPgxPS4rqkt65NF7eQYfegcSYDTm2Z%2BHPbz9HfCaVZ28Zqeko6sR%2F29ML4bguqVvHAM4mWPLNDXH33mjG%2BuzLi8e1BF7tNveg2X9G%2FRdcMkojwKYbu6xN3M6aX2alQg%3D%3D\u0026X-Amz-SignedHeaders=host\u0026X-Amz-Signature=5e2c0d4b4de40373ac0fe91908c2659141a6dd4ab850271cc26042a3885c82ea)\n\n## Note\nThis report was originally reported to GitHub bug bounty program, they asked me to report it to you a month ago",
"id": "GHSA-f5x3-32g6-xq36",
"modified": "2024-06-10T18:30:53Z",
"published": "2024-03-22T16:57:05Z",
"references": [
{
"type": "WEB",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"type": "WEB",
"url": "https://github.com/isaacs/node-tar/commit/fe8cd57da5686f8695415414bda49206a545f7f7"
},
{
"type": "PACKAGE",
"url": "https://github.com/isaacs/node-tar"
},
{
"type": "WEB",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
],
"summary": "Denial of service while parsing a tar file due to lack of folders count validation"
}
rhsa-2024_6148
Vulnerability from csaf_redhat
Published
2024-09-03 02:32
Modified
2024-11-13 13:23
Summary
Red Hat Security Advisory: nodejs:18 security update
Notes
Topic
An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\n* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6148",
"url": "https://access.redhat.com/errata/RHSA-2024:6148"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6148.json"
}
],
"title": "Red Hat Security Advisory: nodejs:18 security update",
"tracking": {
"current_release_date": "2024-11-13T13:23:41+00:00",
"generator": {
"date": "2024-11-13T13:23:41+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2024:6148",
"initial_release_date": "2024-09-03T02:32:16+00:00",
"revision_history": [
{
"date": "2024-09-03T02:32:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-03T02:32:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-13T13:23:41+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs:18:8100020240807161023:489197e6",
"product": {
"name": "nodejs:18:8100020240807161023:489197e6",
"product_id": "nodejs:18:8100020240807161023:489197e6",
"product_identification_helper": {
"purl": "pkg:rpmmod/redhat/nodejs@18:8100020240807161023:489197e6"
}
}
},
{
"category": "product_version",
"name": "nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"product": {
"name": "nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"product_id": "nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B21159%2Bf5a7145d?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.9.0%2B19439%2B7b18b275?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel8.9.0%2B19439%2B7b18b275?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"product": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"product_id": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B21159%2Bf5a7145d?arch=src"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.9.0%2B19439%2B7b18b275?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_id": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_id": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_id": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_id": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_id": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_id": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_id": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_id": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel8.10.0%2B22199%2B56ea0ead?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
"product_reference": "nodejs:18:8100020240807161023:489197e6",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64"
},
"product_reference": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le"
},
"product_reference": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x"
},
"product_reference": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src"
},
"product_reference": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64"
},
"product_reference": "nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch"
},
"product_reference": "nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64 as a component of nodejs:18:8100020240807161023:489197e6 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22020",
"discovery_date": "2024-07-09T02:20:08+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2296417"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js package. By embedding non-network imports in data URLs, this flaw allows an attacker to execute arbitrary code, compromising system security.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs: Bypass network import restriction via data URL",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is categorized as moderate severity rather than high due to its specific conditions for exploitation and impact scope. While the flaw permits bypassing network import restrictions via data URLs to execute arbitrary code, its exploitation is contingent on the attacker\u2019s ability to inject and execute code within a controlled environment. The impact is constrained to scenarios where the vulnerable application processes data URLs and lacks robust validation mechanisms. Additionally, this issue requires the attacker to exploit specific code paths and permissions, which limits its widespread applicability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22020"
},
{
"category": "external",
"summary": "RHBZ#2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/2092749",
"url": "https://hackerone.com/reports/2092749"
}
],
"release_date": "2024-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T02:32:16+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6148"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs: Bypass network import restriction via data URL"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T02:32:16+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6148"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debuginfo-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-debugsource-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-devel-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-docs-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-full-i18n-1:18.20.4-1.module+el8.10.0+22199+56ea0ead.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+21159+f5a7145d.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-0:2021.06-4.module+el8.9.0+19439+7b18b275.src",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:nodejs-packaging-bundler-0:2021.06-4.module+el8.9.0+19439+7b18b275.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs:18:8100020240807161023:489197e6:npm-1:10.7.0-1.18.20.4.1.module+el8.10.0+22199+56ea0ead.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
}
]
}
rhsa-2024_6147
Vulnerability from csaf_redhat
Published
2024-09-03 02:29
Modified
2024-11-13 13:23
Summary
Red Hat Security Advisory: nodejs:18 security update
Notes
Topic
An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:18 module is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\n* nodejs: Bypass network import restriction via data URL (CVE-2024-22020)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6147",
"url": "https://access.redhat.com/errata/RHSA-2024:6147"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6147.json"
}
],
"title": "Red Hat Security Advisory: nodejs:18 security update",
"tracking": {
"current_release_date": "2024-11-13T13:23:52+00:00",
"generator": {
"date": "2024-11-13T13:23:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.1.1"
}
},
"id": "RHSA-2024:6147",
"initial_release_date": "2024-09-03T02:29:11+00:00",
"revision_history": [
{
"date": "2024-09-03T02:29:11+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-03T02:29:11+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-13T13:23:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs:18:9040020240807131341:rhel9",
"product": {
"name": "nodejs:18:9040020240807131341:rhel9",
"product_id": "nodejs:18:9040020240807131341:rhel9",
"product_identification_helper": {
"purl": "pkg:rpmmod/redhat/nodejs@18:9040020240807131341:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"product": {
"name": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"product_id": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=noarch\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.3.0%2B19762%2Bd716bf3b?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.1.0%2B15718%2Be52ec601?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel9.1.0%2B15718%2Be52ec601?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.3.0%2B19762%2Bd716bf3b?arch=src"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.1.0%2B15718%2Be52ec601?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_id": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_id": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_id": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_id": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_id": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@18.20.4-1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64",
"product": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64",
"product_id": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.7.0-1.18.20.4.1.module%2Bel9.4.0%2B22195%2Bc221878e?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
"product_reference": "nodejs:18:9040020240807131341:rhel9",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64"
},
"product_reference": "nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64"
},
"product_reference": "nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64"
},
"product_reference": "nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64"
},
"product_reference": "nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch"
},
"product_reference": "nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64"
},
"product_reference": "nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64 as a component of nodejs:18:9040020240807131341:rhel9 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
},
"product_reference": "npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-22020",
"discovery_date": "2024-07-09T02:20:08+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2296417"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js package. By embedding non-network imports in data URLs, this flaw allows an attacker to execute arbitrary code, compromising system security.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs: Bypass network import restriction via data URL",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is categorized as moderate severity rather than high due to its specific conditions for exploitation and impact scope. While the flaw permits bypassing network import restrictions via data URLs to execute arbitrary code, its exploitation is contingent on the attacker\u2019s ability to inject and execute code within a controlled environment. The impact is constrained to scenarios where the vulnerable application processes data URLs and lacks robust validation mechanisms. Additionally, this issue requires the attacker to exploit specific code paths and permissions, which limits its widespread applicability.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-22020"
},
{
"category": "external",
"summary": "RHBZ#2296417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296417"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-22020"
},
{
"category": "external",
"summary": "https://hackerone.com/reports/2092749",
"url": "https://hackerone.com/reports/2092749"
}
],
"release_date": "2024-07-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T02:29:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6147"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:L/I:H/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs: Bypass network import restriction via data URL"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-03T02:29:11+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6147"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debuginfo-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-debugsource-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-devel-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-docs-1:18.20.4-1.module+el9.4.0+22195+c221878e.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-full-i18n-1:18.20.4-1.module+el9.4.0+22195+c221878e.x86_64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-nodemon-0:3.0.1-1.module+el9.3.0+19762+d716bf3b.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-0:2021.06-4.module+el9.1.0+15718+e52ec601.src",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:nodejs-packaging-bundler-0:2021.06-4.module+el9.1.0+15718+e52ec601.noarch",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.aarch64",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.ppc64le",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.s390x",
"AppStream-9.4.0.Z.MAIN.EUS:nodejs:18:9040020240807131341:rhel9:npm-1:10.7.0-1.18.20.4.1.module+el9.4.0+22195+c221878e.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
}
]
}
rhsa-2024_6755
Vulnerability from csaf_redhat
Published
2024-09-18 11:56
Modified
2024-11-21 20:29
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.2 security and bug fix update
Notes
Topic
Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.2 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an
S3 compatible API.
Bug fixes:
* Previously, when the label on the node was empty, the mount would fail. With this fix, when the node label is empty, the node is not considered for `crush_location` mount option and as a result persistent volume claim (PVC) mounts successfully. (BZ#2303177)
* Previously, after the OpenShift Data Foundation upgrade, the backingstore was stuck with "Connecting" status. With this fix, the location of the `upgrade_bucket_policy` script is corrected. (BZ#2303414)
All users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that fix several bugs are now available for Red Hat OpenShift Data Foundation 4.16.2 on Red Hat Enterprise Linux 9 from Red Hat Container Registry.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Data Foundation. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multi-cloud data management service with an\nS3 compatible API.\n\nBug fixes:\n\n* Previously, when the label on the node was empty, the mount would fail. With this fix, when the node label is empty, the node is not considered for `crush_location` mount option and as a result persistent volume claim (PVC) mounts successfully. (BZ#2303177)\n\n* Previously, after the OpenShift Data Foundation upgrade, the backingstore was stuck with \"Connecting\" status. With this fix, the location of the `upgrade_bucket_policy` script is corrected. (BZ#2303414)\n\nAll users of Red Hat OpenShift Data Foundation are advised to upgrade to these updated images, which provide these bug fixes.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:6755",
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-6104",
"url": "https://access.redhat.com/security/cve/CVE-2024-6104"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-8421",
"url": "https://access.redhat.com/security/cve/CVE-2024-8421"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24789",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28176",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28863",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-29180",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-37890",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-41818",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "2266006",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266006"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2290526",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290526"
},
{
"category": "external",
"summary": "2290675",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290675"
},
{
"category": "external",
"summary": "2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "2300022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300022"
},
{
"category": "external",
"summary": "2300289",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300289"
},
{
"category": "external",
"summary": "2300332",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300332"
},
{
"category": "external",
"summary": "2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "2303177",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303177"
},
{
"category": "external",
"summary": "2303414",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2303414"
},
{
"category": "external",
"summary": "2304074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304074"
},
{
"category": "external",
"summary": "2309710",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2309710"
},
{
"category": "external",
"summary": "2310210",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2310210"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_6755.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.2 security and bug fix update",
"tracking": {
"current_release_date": "2024-11-21T20:29:31+00:00",
"generator": {
"date": "2024-11-21T20:29:31+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:6755",
"initial_release_date": "2024-09-18T11:56:25+00:00",
"revision_history": [
{
"date": "2024-09-18T11:56:25+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-18T11:56:25+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-21T20:29:31+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.2-3"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.2-3"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.2-4"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.2-3"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.2-2"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.2-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39325",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-10-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2243296"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in handling multiplexed streams in the HTTP/2 protocol. A client can repeatedly make a request for a new multiplex stream and immediately send an RST_STREAM frame to cancel it. This creates extra work for the server setting up and tearing down the streams while not hitting any server-side limit for the maximum number of active streams per connection, resulting in a denial of service due to server resource consumption. Red Hat has rated the severity of this flaw as \u0027Important\u0027 as the US Cybersecurity and Infrastructure Security Agency (CISA) declared this vulnerability an active exploit.\r\n\r\nCVE-2023-39325 was assigned for the `Rapid Reset Attack` in the Go language packages.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This CVE is related to CVE-2023-44487.\n\nThe majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-39325"
},
{
"category": "external",
"summary": "RHBZ#2243296",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243296"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39325"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-44487",
"url": "https://access.redhat.com/security/cve/CVE-2023-44487"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003",
"url": "https://access.redhat.com/security/vulnerabilities/RHSB-2023-003"
},
{
"category": "external",
"summary": "https://go.dev/issue/63417",
"url": "https://go.dev/issue/63417"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2023-2102",
"url": "https://pkg.go.dev/vuln/GO-2023-2102"
},
{
"category": "external",
"summary": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487",
"url": "https://www.cisa.gov/news-events/alerts/2023/10/10/http2-rapid-reset-vulnerability-cve-2023-44487"
}
],
"release_date": "2023-10-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "The default stream concurrency limit in golang is 250 streams (requests) per HTTP/2 connection. This value may be adjusted in the golang.org/x/net/http2 package using the Server.MaxConcurrentStreams setting and the ConfigureServer function which are available in golang.org/x/net/http2.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: rapid stream resets can cause excessive work (CVE-2023-44487)"
},
{
"cve": "CVE-2024-6104",
"cwe": {
"id": "CWE-532",
"name": "Insertion of Sensitive Information into Log File"
},
"discovery_date": "2024-06-24T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2294000"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in go-retryablehttp. The package may suffer from a lack of input sanitization by not cleaning up URL data when writing to the logs. This issue could expose sensitive authentication information.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "go-retryablehttp: url might write sensitive information to log file",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-6104"
},
{
"category": "external",
"summary": "RHBZ#2294000",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294000"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-6104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6104"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-6104"
}
],
"release_date": "2024-06-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 6.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "go-retryablehttp: url might write sensitive information to log file"
},
{
"cve": "CVE-2024-24789",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292668"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang. The ZIP implementation of the Go language archive/zip library behaves differently than the rest of the ZIP file format implementations. When handling ZIP files with a corrupted central directory record, the library skips over the invalid record and processes the next valid one. This flaw allows a malicious user to access hidden information or files inside maliciously crafted ZIP files.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: archive/zip: Incorrect handling of certain ZIP files",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24789"
},
{
"category": "external",
"summary": "RHBZ#2292668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292668"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24789"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24789"
}
],
"release_date": "2024-06-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: archive/zip: Incorrect handling of certain ZIP files"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
},
{
"cve": "CVE-2024-41818",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-07-29T16:24:42+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2300499"
}
],
"notes": [
{
"category": "description",
"text": "A regular expression denial of service (ReDoS) flaw was found in fast-xml-parser in the currency.js script. By sending a specially crafted regex input, a remote attacker could cause a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "fast-xml-parser: ReDOS at currency parsing in currency.js",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat has decided to rate this vulnerability as Important due to the potential loss of Availability and the low complexity.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:1855a0b57e087edfd1d1c1345de2422f5cbb57d8cd684bcc467676967988b93c_s390x",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5c030da386a9b03e6840a6ab029c02570c95ba06845601724fa167c07e9eb8d7_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:80d2812e1d0552f98cdb5095229cb904ea38c9b7523433ec14a04309fee65bbe_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:d7c2bc78aace609338662cccae23ac48e591464232ebd0b7bb540417281c6569_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff2fb273110b075237abbc1d4f3733e4d40b8c8c9732d1297321c30cb1e2b4fa_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:ff42a4a6faa413d5313a375131a9da1af2aab2d6197f1a3317f733811c37f0dc_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2b62fe6cf2ee2f076d5917216509f0edda8dea1b34dae19bbaffb93a30ac8c32_s390x",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:2dc4a48faceb2ccc1f3b33a996044e2a7c5c8d2faae6c229fa3a750135665fdc_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:4960d9c4d370a301cbd44ca1747018678b1141bf44d5eec390f7dece2cef8c07_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:b09fcf50c81e27fca918134a4157838645c554a809cb8eb44593770d09c40288_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:5cb62277759ce0b63ee6c37a5c5379d72fe50548a616de86f2b198f068362b73_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:8fa8fc3ed821448c787c9ef2a79f0388a0038c11e0f054b7dc57c49fe5fea5e6_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:e4b92ae33787a1a666b86f0657e756b35665b0761a6ada7046a01ec7a4fc2387_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:000ca7e39c0b730f00049615555e41e5eb7592dc673f5a866459ed9214a8b6fb_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8543a33eec1139b26304b51e6a8be642af65582305d17e0942c67fc1df716351_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8c29a95e5ad2931245c6a69848b6060fe1921061144ecdc184840aaba5e32309_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:19e503d397bd79d0322789b023ce7fdd6f5c8e3ce077a7b2e290f88fbb084b59_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:44168a481eb3f08339918d34fe651f9de4b77a68de493513a2392532ad847304_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:c4529335349d7c4f71fce929a49ed3a850cfb62029e271f5cc6a3357fa9026a1_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d0335bdb39ba92e2dfd5012c01c4e0716af473190612cf456e6b2b36c5b805f9_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:0f8c7c96f43c7cc3af66cf632ee85ec12591d0ff5509cf7d97daefb45fa00cc4_amd64",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:ad227c3ed05ed0783b5633e69f2791c12bc53a72f1af79c55a714d48222ca852_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:e71b2b760cc0090920f2881eae49ac78ca9c374e493fa1a4095985e3a27d4187_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:335daf33b13e5b116d6f15f106d50705a179dd15820da1a0dd88d8ba02cf07d7_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:9a3fcbda671d1651c2a1829d878c29d7de526217f903719e766fec7bf8330e1a_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:ab584021248ace4ec2016bc39641d5bd1fa15a8a05fd79bd0877389a5780d896_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:72187ddb6983eb261bd94e281065fc3da0496dd7379ddd5dc332b8028837b1b9_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a98821c2a60d181f48b234bccf8f4f772683159d48d600caa37008d9495a37d8_s390x",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ca8cca14c379dfaeece1537c1e2cd7c79c42904056f7efdf0768a4f6ce2068c3_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:e36599677da7ad32a6a858b2855e964bb1592a3525d2e4a66186da9aeb19e112_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:09a46522364d4f5c62e476a2083cdc928119e2036c1c5aa1884d567e48944ee0_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:40280944fd426e2f8306423c2960ab13420096829368a1ec80c27aa085fb0872_arm64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:833e1f221e420b28b09c2f9f2ad5e626e20bbf85b289e4cb2f10cd32cf88cd32_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:ee668ea9d1e74c267fcebfe11dd2bdb4757b71eed31baaa6831084da53657b1f_amd64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:240f02cfd3c5e09a0b04904dd0b02b04c39362b7439607e3bc4be5bcffd2ab28_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:3a7205aed26a1954d508afe716e42c9b75ec8f48c6acc6c4dd97d44d5727ed53_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:496ac9c127e649e4a2b2ff47b1afe700f3f8a6f393a667761458998f6633e8af_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:187e4f15fe5199cd52a6d716c756c5feb34d194daf2967c3d8ed5982417b2e39_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:505b143407fe7db716f731269afa2bc579a87eedbda05241ab21693f02d5b116_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b3fc79725c3af0e518346bbfce369047c7afdb0cacc46d79d3e03552b3794de_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:7f977486df6d51c1f3c83dedc5b1f74497a16adb8a5d93039b3accd69cb0adce_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c86dcb5c4eb87d91c191294a15092397674a884c386fc74b9aa4b22c816923c5_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:e66969a311b56573a7f6ea15829d37105aab284f76add449c78617671998ec5b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0019ffcc0aab7107c0e1fd2a96816dcc72bd9458607217611df54b26195c1a11_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:0b60a9c6bf9da9021ba39cb6b0e6d2209500c4c16c2d071df88baaedb28574f8_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:bab50d15899d1bfa99e23749ddd4163b1dba90a8120ce310cf12f76b12f796f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:c317e8525035a17a53adc0d207737b5a465dc9bb6af2a4873461a8f25b9dcd61_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:4f3572258fff46563ccc5231c635fc321e9ff21826cfdf55f946ee1ab5c69bfe_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:a16e36499b44256938d61bbf9cdd0110482f3199126cd4567a5604894bec08bd_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:d1480aa6c2f3c88fbbce798ca53d1050aad2726ef0e502eec22d433be229f904_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:ef079306680b1a982c5da069febab49efa508def25add29bf74e2abfc3848549_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:7a0145f859c92e21c4d58f745bdce763f788fd9e7e6e68b34e03aa30805a63f4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:88809ab7f5be63b0ea6f8ad27a0d34e0894707acc6c549cc5f4339a9328282c3_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:dd3a62203f32795705e66a7dfb9b64f06a8b25e34fcdb22562f77bdf24e273e0_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:8b434897f689f9deb4b68908da3b586ec85a0ddc28743e127544bd9eacd469ec_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:935bc7296c21ed82d1f75c2aaa228a2451e5e339989b95b431d5fbf4dc01dd4a_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e1e7e8293ecd42f31b4a59b93f79956088b99ee97c37084cc481293e76c19c3f_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:0312595313ac3318501c0b2bba2a08f64550a9d85c3b67456ca9a383cb905890_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d037fb2187e9308d6b382c26eb6abf63032d4d5af19300016e7aae801d121841_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:d2085b89dec07afef002d93f3c13808589ce911bd62b20a3139a3351a86f6423_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ea923c20fea9be0a0fabf22e552045e791bd22f70256a31c25577c9a106358c7_s390x",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0a12102e242f8394dd9a5e6ecdb6891bae232bf5a296c5f5f5f5eb6fdf56b777_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:a9ec56182b7545961e8c79e40626b2dd3a1d2c9121acd983668f5a8c237c8686_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:c7a24e7a2354a8b43816c78e720d6f60a79124381d2eb68ada71e4a312044741_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:e2010c337c85955e6c476b707f0b2700e8b8f4ea280f6b45b84db058a31752b7_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:13f99a2bac4636b9ead56f8971af1a54707ada6dcd856133de3c886745067e2d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:7b2356a53199fbe6202bdedd1458a4523d348f5b942cbabd622fb3ad8ff34ba9_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:b7d92e5a2b1f9fe724e0e79a449ef388b327d4e6287bc3d8d8b4b0a3984abae8_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:55bafda483567207fb702cf2271ed63ba30a7a1be0cefc5b3d8689a33da10eb2_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:b467df73f3b69e6f9dc3b917564959b0c43033fb469aa852696df1dd82c013a4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:d870646f3baf49a5e5003197e508ab2d6a05514f12695ebe3f7d1cc25bf5db1a_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:09d7bfcd1acb49aa33ecc9aea5064c6b0e1267b8fe31ba8203f7fd0664be3eed_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:606d9e8c7a45297497fa30e8e6f506d317eb20a8e8e64bb1646f1a0e9d0d06b1_arm64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:7f93eba832531f0750c7b6cc8e88513ef2940e17915c260a5f19999f7ea87bc6_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dc1f27c8d2955955f38d18e08b33ce46d3ec5bdfd278e227e4da060e5a7b71c4_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:209a9a32355c48f283911bd11e91a43c9606c00096b84bf9219d68490ceb6ffc_amd64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:a67045fa2ad8333f8fe8bba60f8116c67f8a112d8ef65145f1c6abb1c7920c83_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:b3d1bd8a61bb74a169e2e95788302f2d155bc3568f37bc6c0b7128a0d9725320_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:62596d599a798f6e8d1e592b1841503e1c3f8e3522d454fe22bef35b0ec05d62_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:78c66f8339aa72b249551465e771ff2fed6b80ff9a3d59225f7c3053f8ba5894_ppc64le",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:96463b6b00598d68f5492eac37284607ba29a335e6114b9e53f483aab31de4f5_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:142ea2554c33e5cc06ed6ef08ed1c3027f2b1c35ac028dec3e501a9c6540e44b_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:5c6bb32191c11e2dcf1cffa58dd43358d8179c9c4888e380363e69d99401b9ca_amd64",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:cfb5a9b87af42f71c3bac4b361fd416c2e88f4749130d388725da946b31f4a5f_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:5d4035cae657f50712d0b205c3adb73bce0b1eedce135067cec82db7acf526b1_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:73ac6d6ff8eaff43f5ffb97d36f6ea6f81a95ae50eb2bfcf17b7ebd0b85feb84_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:9d5fd0aa2c6017799fb3fa3d34ba8ff428ec9a59c2f85ad9735722db7375f712_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:b1241bbc12951a4da2b9c57248485b27b651784d4e0f1e93d32c13c626dc3a75_arm64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:3007832d1858d62cc1743fd0991054ed1679ffc4e6a94484c372d859cff6f7ac_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:952670e5ab08a2d5ef3f681e999f63c501680ccbe967c0fa9e4faca1407cbcff_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:b7d24802bcb24fec3e2aa9ec92e1c588b8d70089d380b4e5ad6ef750e2b093aa_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:61015102d7fbc08fa15f2438428e58f8f6b0f7d127117b9c649ae7906fabc0fc_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:b35358150785246c2d9f81fb1af6e9ec26bc53211db772c6d9fc4b302fb99793_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:ba08fcb7d4b731f65a8f575f82f2926a6742e61844ddf1e14f6de0428bc63828_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-41818"
},
{
"category": "external",
"summary": "RHBZ#2300499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2300499"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-41818",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41818"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-41818"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/blob/master/src/v5/valueParsers/currency.js#L10"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/commit/d0bfe8a3a2813a185f39591bbef222212d856164"
},
{
"category": "external",
"summary": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v",
"url": "https://github.com/NaturalIntelligence/fast-xml-parser/security/advisories/GHSA-mpg4-rc92-vx8v"
}
],
"release_date": "2024-07-28T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-18T11:56:25+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:10b1d93f122367a248bcaec7f6207679ee037f1898af43f87c4cd20a52977892_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2a6eb645330b2dc345361bfd58cfec277865f9020388c2b0b16822660a6c3239_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:9525321c9555ceb005a6d38c7b40b429875454d5770da138cf5aa6b1c9b36d74_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4c4681f7cfacae5dbbe4bb54b095813a8991a9fbf681c17794834064065a526_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "fast-xml-parser: ReDOS at currency parsing in currency.js"
}
]
}
rhsa-2024_4591
Vulnerability from csaf_redhat
Published
2024-07-17 13:09
Modified
2024-11-14 00:36
Summary
Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement & bug fix update
Notes
Topic
Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.16.0 on Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.
Security Fix(es):
* get-func-name: ReDoS in chai module (CVE-2023-43646)
* opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics (CVE-2023-47108)
* golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)
* golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm (CVE-2024-24783)
* golang: html/template: errors returned from MarshalJSON methods may break template escaping (CVE-2024-24785)
* golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON (CVE-2024-24786)
* jose: resource exhaustion (CVE-2024-28176)
* jose-go: improper handling of highly compressed data (CVE-2024-28180)
* submariner-operator: RBAC permissions can allow for the spread of node compromises (CVE-2024-5042)
* nodejs-ws: denial of service when handling a request with many HTTP headers (CVE-2024-37890)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
These updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:
https://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.16/html/4.16_release_notes/index
All Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated images that include numerous enhancements, security, and bug fixes are now available for Red Hat OpenShift Data Foundation 4.16.0 on Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Data Foundation is software-defined storage integrated with and optimized for the Red Hat OpenShift Container Platform. Red Hat OpenShift Data Foundation is a highly scalable, production-grade persistent storage for stateful applications running in the Red Hat OpenShift Container Platform. In addition to persistent storage, Red Hat OpenShift Data Foundation provisions a multicloud data management service with an S3 compatible API.\n\nSecurity Fix(es):\n\n* get-func-name: ReDoS in chai module (CVE-2023-43646)\n\n* opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics (CVE-2023-47108)\n\n* golang-fips\u0026#x2F;openssl: Memory leaks in code encrypting and decrypting RSA payloads (CVE-2024-1394)\n\n* golang: crypto\u0026#x2F;x509: Verify panics on certificates with an unknown public key algorithm (CVE-2024-24783)\n\n* golang: html\u0026#x2F;template: errors returned from MarshalJSON methods may break template escaping (CVE-2024-24785)\n\n* golang-protobuf: encoding\u0026#x2F;protojson, internal\u0026#x2F;encoding\u0026#x2F;json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON (CVE-2024-24786)\n\n* jose: resource exhaustion (CVE-2024-28176)\n\n* jose-go: improper handling of highly compressed data (CVE-2024-28180)\n\n* submariner-operator: RBAC permissions can allow for the spread of node compromises (CVE-2024-5042)\n\n* nodejs-ws: denial of service when handling a request with many HTTP headers (CVE-2024-37890)\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\nThese updated packages include numerous enhancements and bug fixes. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat OpenShift Data Foundation Release Notes for information on the most significant of these changes:\n\nhttps://docs.redhat.com/en/documentation/red_hat_openshift_data_foundation/4.16/html/4.16_release_notes/index\n\nAll Red Hat OpenShift Data Foundation users are advised to upgrade to these packages that provide these bug fixes and enhancements.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:4591",
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-43646",
"url": "https://access.redhat.com/security/cve/CVE-2023-43646"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2023-47108",
"url": "https://access.redhat.com/security/cve/CVE-2023-47108"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-1394",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-5042",
"url": "https://access.redhat.com/security/cve/CVE-2024-5042"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24783",
"url": "https://access.redhat.com/security/cve/CVE-2024-24783"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24785",
"url": "https://access.redhat.com/security/cve/CVE-2024-24785"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-24786",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28176",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28863",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-28180",
"url": "https://access.redhat.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-37890",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "2069759",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2069759"
},
{
"category": "external",
"summary": "2078270",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2078270"
},
{
"category": "external",
"summary": "2128142",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2128142"
},
{
"category": "external",
"summary": "2132724",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2132724"
},
{
"category": "external",
"summary": "2136413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2136413"
},
{
"category": "external",
"summary": "2139835",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2139835"
},
{
"category": "external",
"summary": "2210040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2210040"
},
{
"category": "external",
"summary": "2214499",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214499"
},
{
"category": "external",
"summary": "2214948",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2214948"
},
{
"category": "external",
"summary": "2215910",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2215910"
},
{
"category": "external",
"summary": "2216213",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216213"
},
{
"category": "external",
"summary": "2216803",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2216803"
},
{
"category": "external",
"summary": "2222146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2222146"
},
{
"category": "external",
"summary": "2231360",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2231360"
},
{
"category": "external",
"summary": "2238308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2238308"
},
{
"category": "external",
"summary": "2239587",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2239587"
},
{
"category": "external",
"summary": "2240951",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2240951"
},
{
"category": "external",
"summary": "2241149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241149"
},
{
"category": "external",
"summary": "2242832",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2242832"
},
{
"category": "external",
"summary": "2243244",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2243244"
},
{
"category": "external",
"summary": "2244353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2244353"
},
{
"category": "external",
"summary": "2246186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246186"
},
{
"category": "external",
"summary": "2246364",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246364"
},
{
"category": "external",
"summary": "2246834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2246834"
},
{
"category": "external",
"summary": "2251022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251022"
},
{
"category": "external",
"summary": "2251198",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251198"
},
{
"category": "external",
"summary": "2251308",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251308"
},
{
"category": "external",
"summary": "2252318",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2252318"
},
{
"category": "external",
"summary": "2253043",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253043"
},
{
"category": "external",
"summary": "2253076",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2253076"
},
{
"category": "external",
"summary": "2255998",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2255998"
},
{
"category": "external",
"summary": "2256563",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256563"
},
{
"category": "external",
"summary": "2256899",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2256899"
},
{
"category": "external",
"summary": "2257259",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257259"
},
{
"category": "external",
"summary": "2257949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2257949"
},
{
"category": "external",
"summary": "2258801",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258801"
},
{
"category": "external",
"summary": "2258861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258861"
},
{
"category": "external",
"summary": "2258950",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2258950"
},
{
"category": "external",
"summary": "2259195",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259195"
},
{
"category": "external",
"summary": "2259209",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259209"
},
{
"category": "external",
"summary": "2259616",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259616"
},
{
"category": "external",
"summary": "2259847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2259847"
},
{
"category": "external",
"summary": "2260325",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260325"
},
{
"category": "external",
"summary": "2260550",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260550"
},
{
"category": "external",
"summary": "2260757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2260757"
},
{
"category": "external",
"summary": "2261938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2261938"
},
{
"category": "external",
"summary": "2262134",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262134"
},
{
"category": "external",
"summary": "2262455",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262455"
},
{
"category": "external",
"summary": "2262461",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262461"
},
{
"category": "external",
"summary": "2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "2262943",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262943"
},
{
"category": "external",
"summary": "2262992",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262992"
},
{
"category": "external",
"summary": "2262997",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262997"
},
{
"category": "external",
"summary": "2263148",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263148"
},
{
"category": "external",
"summary": "2263468",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263468"
},
{
"category": "external",
"summary": "2263488",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263488"
},
{
"category": "external",
"summary": "2263818",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2263818"
},
{
"category": "external",
"summary": "2264435",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264435"
},
{
"category": "external",
"summary": "2264480",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264480"
},
{
"category": "external",
"summary": "2264767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264767"
},
{
"category": "external",
"summary": "2264900",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2264900"
},
{
"category": "external",
"summary": "2265340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265340"
},
{
"category": "external",
"summary": "2265492",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265492"
},
{
"category": "external",
"summary": "2265562",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2265562"
},
{
"category": "external",
"summary": "2266316",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266316"
},
{
"category": "external",
"summary": "2266562",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266562"
},
{
"category": "external",
"summary": "2266621",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266621"
},
{
"category": "external",
"summary": "2266629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266629"
},
{
"category": "external",
"summary": "2266845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266845"
},
{
"category": "external",
"summary": "2266930",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2266930"
},
{
"category": "external",
"summary": "2267067",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267067"
},
{
"category": "external",
"summary": "2267610",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267610"
},
{
"category": "external",
"summary": "2267907",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267907"
},
{
"category": "external",
"summary": "2267965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2267965"
},
{
"category": "external",
"summary": "2268019",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268019"
},
{
"category": "external",
"summary": "2268022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268022"
},
{
"category": "external",
"summary": "2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "2268939",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268939"
},
{
"category": "external",
"summary": "2269319",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269319"
},
{
"category": "external",
"summary": "2269354",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269354"
},
{
"category": "external",
"summary": "2270064",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270064"
},
{
"category": "external",
"summary": "2270446",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270446"
},
{
"category": "external",
"summary": "2271593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271593"
},
{
"category": "external",
"summary": "2271804",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271804"
},
{
"category": "external",
"summary": "2271921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2271921"
},
{
"category": "external",
"summary": "2272386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272386"
},
{
"category": "external",
"summary": "2272469",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272469"
},
{
"category": "external",
"summary": "2272528",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272528"
},
{
"category": "external",
"summary": "2272644",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272644"
},
{
"category": "external",
"summary": "2272664",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272664"
},
{
"category": "external",
"summary": "2272666",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272666"
},
{
"category": "external",
"summary": "2272928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272928"
},
{
"category": "external",
"summary": "2272932",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272932"
},
{
"category": "external",
"summary": "2272938",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2272938"
},
{
"category": "external",
"summary": "2273305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273305"
},
{
"category": "external",
"summary": "2273336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273336"
},
{
"category": "external",
"summary": "2273386",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273386"
},
{
"category": "external",
"summary": "2273387",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273387"
},
{
"category": "external",
"summary": "2273398",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273398"
},
{
"category": "external",
"summary": "2273533",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273533"
},
{
"category": "external",
"summary": "2273553",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273553"
},
{
"category": "external",
"summary": "2273560",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273560"
},
{
"category": "external",
"summary": "2273605",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273605"
},
{
"category": "external",
"summary": "2273702",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273702"
},
{
"category": "external",
"summary": "2273705",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2273705"
},
{
"category": "external",
"summary": "2274107",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274107"
},
{
"category": "external",
"summary": "2274175",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274175"
},
{
"category": "external",
"summary": "2274193",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274193"
},
{
"category": "external",
"summary": "2274324",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274324"
},
{
"category": "external",
"summary": "2274373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274373"
},
{
"category": "external",
"summary": "2274381",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274381"
},
{
"category": "external",
"summary": "2274392",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274392"
},
{
"category": "external",
"summary": "2274476",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274476"
},
{
"category": "external",
"summary": "2274548",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274548"
},
{
"category": "external",
"summary": "2274728",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274728"
},
{
"category": "external",
"summary": "2274734",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274734"
},
{
"category": "external",
"summary": "2274750",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274750"
},
{
"category": "external",
"summary": "2274757",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274757"
},
{
"category": "external",
"summary": "2274765",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274765"
},
{
"category": "external",
"summary": "2275049",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275049"
},
{
"category": "external",
"summary": "2275181",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275181"
},
{
"category": "external",
"summary": "2275222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275222"
},
{
"category": "external",
"summary": "2275254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275254"
},
{
"category": "external",
"summary": "2275413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275413"
},
{
"category": "external",
"summary": "2275456",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275456"
},
{
"category": "external",
"summary": "2275484",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275484"
},
{
"category": "external",
"summary": "2275886",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275886"
},
{
"category": "external",
"summary": "2275935",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2275935"
},
{
"category": "external",
"summary": "2276028",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276028"
},
{
"category": "external",
"summary": "2276055",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276055"
},
{
"category": "external",
"summary": "2276056",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276056"
},
{
"category": "external",
"summary": "2276135",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276135"
},
{
"category": "external",
"summary": "2276222",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276222"
},
{
"category": "external",
"summary": "2276344",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276344"
},
{
"category": "external",
"summary": "2276353",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276353"
},
{
"category": "external",
"summary": "2276366",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276366"
},
{
"category": "external",
"summary": "2276413",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276413"
},
{
"category": "external",
"summary": "2276438",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276438"
},
{
"category": "external",
"summary": "2276591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276591"
},
{
"category": "external",
"summary": "2276593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276593"
},
{
"category": "external",
"summary": "2276694",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276694"
},
{
"category": "external",
"summary": "2276913",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276913"
},
{
"category": "external",
"summary": "2276941",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2276941"
},
{
"category": "external",
"summary": "2277184",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277184"
},
{
"category": "external",
"summary": "2277186",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277186"
},
{
"category": "external",
"summary": "2277711",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277711"
},
{
"category": "external",
"summary": "2277766",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277766"
},
{
"category": "external",
"summary": "2277770",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277770"
},
{
"category": "external",
"summary": "2277773",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277773"
},
{
"category": "external",
"summary": "2277785",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2277785"
},
{
"category": "external",
"summary": "2278120",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278120"
},
{
"category": "external",
"summary": "2278389",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278389"
},
{
"category": "external",
"summary": "2278593",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278593"
},
{
"category": "external",
"summary": "2278603",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278603"
},
{
"category": "external",
"summary": "2278606",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278606"
},
{
"category": "external",
"summary": "2278676",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278676"
},
{
"category": "external",
"summary": "2278681",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278681"
},
{
"category": "external",
"summary": "2278684",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278684"
},
{
"category": "external",
"summary": "2278799",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278799"
},
{
"category": "external",
"summary": "2278815",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2278815"
},
{
"category": "external",
"summary": "2279742",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279742"
},
{
"category": "external",
"summary": "2279860",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279860"
},
{
"category": "external",
"summary": "2279928",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279928"
},
{
"category": "external",
"summary": "2280342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280342"
},
{
"category": "external",
"summary": "2280378",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280378"
},
{
"category": "external",
"summary": "2280657",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280657"
},
{
"category": "external",
"summary": "2280813",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280813"
},
{
"category": "external",
"summary": "2280818",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280818"
},
{
"category": "external",
"summary": "2280820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280820"
},
{
"category": "external",
"summary": "2280834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280834"
},
{
"category": "external",
"summary": "2280921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280921"
},
{
"category": "external",
"summary": "2280946",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280946"
},
{
"category": "external",
"summary": "2280953",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280953"
},
{
"category": "external",
"summary": "2281580",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281580"
},
{
"category": "external",
"summary": "2281722",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281722"
},
{
"category": "external",
"summary": "2281729",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2281729"
},
{
"category": "external",
"summary": "2282243",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282243"
},
{
"category": "external",
"summary": "2282254",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282254"
},
{
"category": "external",
"summary": "2282284",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282284"
},
{
"category": "external",
"summary": "2282314",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282314"
},
{
"category": "external",
"summary": "2282543",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282543"
},
{
"category": "external",
"summary": "2282834",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2282834"
},
{
"category": "external",
"summary": "2283024",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283024"
},
{
"category": "external",
"summary": "2283489",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283489"
},
{
"category": "external",
"summary": "2283621",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283621"
},
{
"category": "external",
"summary": "2283629",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283629"
},
{
"category": "external",
"summary": "2283651",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283651"
},
{
"category": "external",
"summary": "2283797",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283797"
},
{
"category": "external",
"summary": "2283820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283820"
},
{
"category": "external",
"summary": "2283965",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283965"
},
{
"category": "external",
"summary": "2283981",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2283981"
},
{
"category": "external",
"summary": "2284090",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284090"
},
{
"category": "external",
"summary": "2284430",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284430"
},
{
"category": "external",
"summary": "2284652",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2284652"
},
{
"category": "external",
"summary": "2290677",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290677"
},
{
"category": "external",
"summary": "2290847",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290847"
},
{
"category": "external",
"summary": "2291132",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291132"
},
{
"category": "external",
"summary": "2291182",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291182"
},
{
"category": "external",
"summary": "2291255",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291255"
},
{
"category": "external",
"summary": "2291301",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291301"
},
{
"category": "external",
"summary": "2291305",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291305"
},
{
"category": "external",
"summary": "2291336",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2291336"
},
{
"category": "external",
"summary": "2292114",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292114"
},
{
"category": "external",
"summary": "2292241",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292241"
},
{
"category": "external",
"summary": "2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2293621",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293621"
},
{
"category": "external",
"summary": "2293634",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293634"
},
{
"category": "external",
"summary": "2293881",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293881"
},
{
"category": "external",
"summary": "2294383",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2294383"
},
{
"category": "external",
"summary": "2296991",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2296991"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_4591.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.0 security, enhancement \u0026 bug fix update",
"tracking": {
"current_release_date": "2024-11-14T00:36:28+00:00",
"generator": {
"date": "2024-11-14T00:36:28+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.0"
}
},
"id": "RHSA-2024:4591",
"initial_release_date": "2024-07-17T13:09:39+00:00",
"revision_history": [
{
"date": "2024-07-17T13:09:39+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-07-17T13:09:39+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-14T00:36:28+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHODF 4.16 for RHEL 9",
"product": {
"name": "RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift_data_foundation:4.16::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Data Foundation"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"product_id": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f?arch=amd64\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.0-33"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"product_id": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"product_id": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"product_id": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"product_id": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"product_id": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.0-73"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"product_id": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"product_id": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"product_id": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"product": {
"name": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"product_id": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.0-57"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.0-12"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.0-58"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"product": {
"name": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"product_id": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"product_id": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"product_id": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"product_id": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb?arch=amd64\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf?arch=amd64\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.0-66"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"product_id": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf?arch=s390x\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.0-33"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"product_id": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"product_id": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"product_id": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"product_id": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.0-73"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"product_id": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"product_id": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295?arch=s390x\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"product_id": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"product": {
"name": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"product_id": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.0-57"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.0-12"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.0-58"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"product_id": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"product": {
"name": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"product_id": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"product_id": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"product_id": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"product_id": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56?arch=s390x\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970?arch=s390x\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.0-66"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"product": {
"name": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"product_id": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/cephcsi-rhel9\u0026tag=v4.16.0-33"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"product_id": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"product": {
"name": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"product_id": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"product_id": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"product": {
"name": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"product_id": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-console-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"product": {
"name": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"product_id": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"product": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"product_id": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-metrics-exporter-rhel9\u0026tag=v4.16.0-73"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"product": {
"name": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"product_id": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"product_id": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"product_id": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"product": {
"name": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"product_id": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-console-rhel9\u0026tag=v4.16.0-57"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"product": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"product_id": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-cosi-sidecar-rhel9\u0026tag=v4.16.0-12"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"product_id": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"product": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"product_id": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-console-rhel9\u0026tag=v4.16.0-58"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"product": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"product_id": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"product_id": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"product": {
"name": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"product_id": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"product_id": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"product": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"product_id": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odf-prometheus-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"product": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"product_id": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-cluster-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"product": {
"name": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"product_id": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-hub-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"product_id": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"product": {
"name": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"product_id": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/odr-recipe-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"product": {
"name": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"product_id": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-operator-bundle\u0026tag=v4.16.0-137"
}
}
},
{
"category": "product_version",
"name": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"product": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"product_id": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe?arch=ppc64le\u0026repository_url=registry.redhat.io/odf4/rook-ceph-rhel9-operator\u0026tag=v4.16.0-66"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"product": {
"name": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"product_id": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-core-rhel9\u0026tag=v4.16.0-60"
}
}
},
{
"category": "product_version",
"name": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"product": {
"name": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"product_id": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"product_identification_helper": {
"purl": "pkg:oci/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266?arch=arm64\u0026repository_url=registry.redhat.io/odf4/mcg-rhel9-operator\u0026tag=v4.16.0-38"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"product": {
"name": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"product_id": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-client-rhel9-operator\u0026tag=v4.16.0-30"
}
}
},
{
"category": "product_version",
"name": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"product": {
"name": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"product_id": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7?arch=arm64\u0026repository_url=registry.redhat.io/odf4/ocs-rhel9-operator\u0026tag=v4.16.0-76"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"product": {
"name": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"product_id": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-cli-rhel9\u0026tag=v4.16.0-44"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"product": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"product_id": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-rhel9-operator\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"product": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"product_id": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-csi-addons-sidecar-rhel9\u0026tag=v4.16.0-15"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"product": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"product_id": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-multicluster-rhel9-operator\u0026tag=v4.16.0-19"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"product": {
"name": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"product_id": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-must-gather-rhel9\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"product": {
"name": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"product_id": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odf-rhel9-operator\u0026tag=v4.16.0-23"
}
}
},
{
"category": "product_version",
"name": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"product": {
"name": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"product_id": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"product_identification_helper": {
"purl": "pkg:oci/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea?arch=arm64\u0026repository_url=registry.redhat.io/odf4/odr-rhel9-operator\u0026tag=v4.16.0-47"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
},
"product_reference": "odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
},
"product_reference": "odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le"
},
"product_reference": "odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
},
"product_reference": "odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x"
},
"product_reference": "odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le"
},
"product_reference": "odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x"
},
"product_reference": "odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64"
},
"product_reference": "odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le"
},
"product_reference": "odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x"
},
"product_reference": "odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64"
},
"product_reference": "odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le"
},
"product_reference": "odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x"
},
"product_reference": "odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64"
},
"product_reference": "odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64"
},
"product_reference": "odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64"
},
"product_reference": "odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
},
"product_reference": "odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
},
"product_reference": "odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le"
},
"product_reference": "odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
},
"product_reference": "odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x"
},
"product_reference": "odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le"
},
"product_reference": "odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x"
},
"product_reference": "odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64"
},
"product_reference": "odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x"
},
"product_reference": "odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64"
},
"product_reference": "odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64"
},
"product_reference": "odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le"
},
"product_reference": "odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64"
},
"product_reference": "odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
},
"product_reference": "odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64"
},
"product_reference": "odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64 as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"relates_to_product_reference": "9Base-RHODF-4.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le as a component of RHODF 4.16 for RHEL 9",
"product_id": "9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
},
"product_reference": "odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le",
"relates_to_product_reference": "9Base-RHODF-4.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-43646",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2023-09-28T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2241149"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the get-func-name package in the chai module. Affected versions of this package are vulnerable to Regular expression denial of service (ReDoS) attacks, affecting system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "get-func-name: ReDoS in chai module",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "- This vulnerability can be exploited when there is an imbalance in parentheses, which results in excessive backtracking and subsequently increases the CPU load and processing time significantly. This vulnerability can be triggered using the following input: \u0027\\t\u0027.repeat(54773) + \u0027\\t/function/i\u0027\n\n- The get-func-name package is a build-time dependency in Red Hat products, which reduces the chance of successful exploitation. Hence, the impact is set to Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-43646"
},
{
"category": "external",
"summary": "RHBZ#2241149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2241149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-43646",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43646"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-43646",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-43646"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-4q6p-r6v2-jvc5",
"url": "https://github.com/advisories/GHSA-4q6p-r6v2-jvc5"
},
{
"category": "external",
"summary": "https://github.com/chaijs/get-func-name/blob/78ad756441a83f3dc203e50f76c113ae3ac017dc/index.js#L15",
"url": "https://github.com/chaijs/get-func-name/blob/78ad756441a83f3dc203e50f76c113ae3ac017dc/index.js#L15"
}
],
"release_date": "2023-09-27T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "get-func-name: ReDoS in chai module"
},
{
"cve": "CVE-2023-47108",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"discovery_date": "2023-11-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2251198"
}
],
"notes": [
{
"category": "description",
"text": "A memory exhaustion flaw was found in the otelgrpc handler of open-telemetry. This flaw may allow a remote unauthenticated attacker to flood the peer address and port and exhaust the server\u0027s memory by sending multiple malicious requests, affecting the availability of the system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "While no authentication is required, there are a significant number of non-default factors that prevent widespread exploitation of this issue. To affect a service, all of the following must be true:\n- The go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc package must be in use\n- Configured a metrics pipeline that uses the UnaryServerInterceptor wrapper function\n- No filtering of unknown HTTP methods or user agents at a higher level, such as Content Delivery Network\n\nDue to the limited attack surface, Red Hat Product Security rates the impact of this flaw as Moderate.\n\ncluster-network-operator-container in Openshift Container Platform 4 is rated as low and Won\u0027t Fix as the stats are behind an RBAC proxy and isn\u0027t available to unauthenticated users.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-47108"
},
{
"category": "external",
"summary": "RHBZ#2251198",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2251198"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-47108",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47108"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-47108",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47108"
},
{
"category": "external",
"summary": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-8pgv-569h-w5rw",
"url": "https://github.com/open-telemetry/opentelemetry-go-contrib/security/advisories/GHSA-8pgv-569h-w5rw"
}
],
"release_date": "2023-11-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "As a workaround, use a view removing the attributes. Another possibility is to disable grpc metrics instrumentation by passing otelgrpc.WithMeterProvider option with noop.NewMeterProvider.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "opentelemetry-go-contrib: DoS vulnerability in otelgrpc due to unbound cardinality metrics"
},
{
"acknowledgments": [
{
"names": [
"@r3kumar",
"@qmuntal"
]
}
],
"cve": "CVE-2024-1394",
"cwe": {
"id": "CWE-401",
"name": "Missing Release of Memory after Effective Lifetime"
},
"discovery_date": "2024-02-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2262921"
}
],
"notes": [
{
"category": "description",
"text": "A memory leak flaw was found in Golang in the RSA encrypting/decrypting code, which might lead to a resource exhaustion vulnerability using attacker-controlled inputs\u200b. The memory leak happens in github.com/golang-fips/openssl/openssl/rsa.go#L113. The objects leaked are pkey\u200b and ctx\u200b. That function uses named return parameters to free pkey\u200b and ctx\u200b if there is an error initializing the context or setting the different properties. All return statements related to error cases follow the \"return nil, nil, fail(...)\" pattern, meaning that pkey\u200b and ctx\u200b will be nil inside the deferred function that should free them.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The majority of RHEL utilities are not long-running applications; instead, they are command-line tools. These tools utilize Golang package as build-time dependency, which is why they are classified as having a \"Moderate\" level of impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-1394"
},
{
"category": "external",
"summary": "RHBZ#2262921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2262921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-1394",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1394"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-1394"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136",
"url": "https://github.com/golang-fips/openssl/commit/85d31d0d257ce842c8a1e63c4d230ae850348136"
},
{
"category": "external",
"summary": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6",
"url": "https://github.com/golang-fips/openssl/security/advisories/GHSA-78hx-gp6g-7mj6"
},
{
"category": "external",
"summary": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f",
"url": "https://github.com/microsoft/go-crypto-openssl/commit/104fe7f6912788d2ad44602f77a0a0a62f1f259f"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2660",
"url": "https://pkg.go.dev/vuln/GO-2024-2660"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2660.json",
"url": "https://vuln.go.dev/ID/GO-2024-2660.json"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang-fips/openssl: Memory leaks in code encrypting and decrypting RSA payloads"
},
{
"cve": "CVE-2024-5042",
"cwe": {
"id": "CWE-250",
"name": "Execution with Unnecessary Privileges"
},
"discovery_date": "2024-05-15T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280921"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Submariner project. Due to unnecessary role-based access control permissions, a privileged attacker can run a malicious container on a node that may allow them to steal service account tokens and further compromise other nodes and potentially the entire cluster.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "submariner-operator: RBAC permissions can allow for the spread of node compromises",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "For the submariner operator in Red Hat Advanced Cluster Management for Kubernetes, the submariner-security outlined potential vulnerabilities regarding RBAC permissions being too broad. Those permissions make it possible to create, patch or update statefulsets or replicasets resources. This may allow new privileged containers escaping them and gaining root privileges on any worker nodes where those containers have been deployed within the cluster.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-5042"
},
{
"category": "external",
"summary": "RHBZ#2280921",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280921"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-5042",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5042"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-5042",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-5042"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-2rhx-qhxp-5jpw",
"url": "https://github.com/advisories/GHSA-2rhx-qhxp-5jpw"
}
],
"release_date": "2024-05-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.6,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "submariner-operator: RBAC permissions can allow for the spread of node compromises"
},
{
"cve": "CVE-2024-24783",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-05T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268019"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s crypto/x509 standard library package. Verifying a certificate chain that contains a certificate with an unknown public key algorithm will cause a Certificate.Verify to panic. This issue affects all crypto/tls clients and servers that set Config.ClientAuth to VerifyClientCertIfGiven or RequireAndVerifyClientCert.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24783"
},
{
"category": "external",
"summary": "RHBZ#2268019",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268019"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24783",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24783"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24783",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24783"
},
{
"category": "external",
"summary": "http://www.openwall.com/lists/oss-security/2024/03/08/4",
"url": "http://www.openwall.com/lists/oss-security/2024/03/08/4"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-3q2c-pvp5-3cqp",
"url": "https://github.com/advisories/GHSA-3q2c-pvp5-3cqp"
},
{
"category": "external",
"summary": "https://go.dev/cl/569339",
"url": "https://go.dev/cl/569339"
},
{
"category": "external",
"summary": "https://go.dev/issue/65390",
"url": "https://go.dev/issue/65390"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg",
"url": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2598",
"url": "https://pkg.go.dev/vuln/GO-2024-2598"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240329-0005",
"url": "https://security.netapp.com/advisory/ntap-20240329-0005"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: crypto/x509: Verify panics on certificates with an unknown public key algorithm"
},
{
"cve": "CVE-2024-24785",
"cwe": {
"id": "CWE-74",
"name": "Improper Neutralization of Special Elements in Output Used by a Downstream Component (\u0027Injection\u0027)"
},
"discovery_date": "2024-03-05T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268022"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s html/template standard library package. If errors returned from MarshalJSON methods contain user-controlled data, they may be used to break the contextual auto-escaping behavior of the html/template package, allowing subsequent actions to inject unexpected content into templates.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: html/template: errors returned from MarshalJSON methods may break template escaping",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24785"
},
{
"category": "external",
"summary": "RHBZ#2268022",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268022"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24785",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24785"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24785",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24785"
},
{
"category": "external",
"summary": "https://go.dev/cl/564196",
"url": "https://go.dev/cl/564196"
},
{
"category": "external",
"summary": "https://go.dev/issue/65697",
"url": "https://go.dev/issue/65697"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg",
"url": "https://groups.google.com/g/golang-announce/c/5pwGVUPoMbg"
},
{
"category": "external",
"summary": "https://vuln.go.dev/ID/GO-2024-2610.json",
"url": "https://vuln.go.dev/ID/GO-2024-2610.json"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: html/template: errors returned from MarshalJSON methods may break template escaping"
},
{
"cve": "CVE-2024-24786",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268046"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Golang\u0027s protobuf module, where the unmarshal function can enter an infinite loop when processing certain invalid inputs. This issue occurs during unmarshaling into a message that includes a google.protobuf.Any or when the UnmarshalOptions.DiscardUnknown option is enabled. This flaw allows an attacker to craft malicious input tailored to trigger the identified flaw in the unmarshal function. By providing carefully constructed invalid inputs, they could potentially cause the function to enter an infinite loop, resulting in a denial of service condition or other unintended behaviors in the affected system.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24786"
},
{
"category": "external",
"summary": "RHBZ#2268046",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268046"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24786"
},
{
"category": "external",
"summary": "https://go.dev/cl/569356",
"url": "https://go.dev/cl/569356"
},
{
"category": "external",
"summary": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/",
"url": "https://groups.google.com/g/golang-announce/c/ArQ6CDgtEjY/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2611",
"url": "https://pkg.go.dev/vuln/GO-2024-2611"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang-protobuf: encoding/protojson, internal/encoding/json: infinite loop in protojson.Unmarshal when unmarshaling certain forms of invalid JSON"
},
{
"cve": "CVE-2024-28176",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268820"
}
],
"notes": [
{
"category": "description",
"text": "Jose was found to have an uncontrolled resource consumption vulnerability. Under certain conditions, the user\u0027s environment can consume an unreasonable amount of CPU time or memory during JWE decryption operations, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose: resource exhaustion",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28176"
},
{
"category": "external",
"summary": "RHBZ#2268820",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268820"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28176"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28176"
},
{
"category": "external",
"summary": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q",
"url": "https://github.com/panva/jose/security/advisories/GHSA-hhhv-q57g-882q"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose: resource exhaustion"
},
{
"cve": "CVE-2024-28180",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268854"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose-go: improper handling of highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "RHBZ#2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose-go: improper handling of highly compressed data"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-37890",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-17T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2292777"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Node.js WebSocket library (ws). A request with several headers exceeding the \u0027server.maxHeadersCount\u0027 threshold could be used to crash a ws server, leading to a denial of service.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "nodejs-ws: denial of service when handling a request with many HTTP headers",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"known_not_affected": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-37890"
},
{
"category": "external",
"summary": "RHBZ#2292777",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2292777"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37890"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-37890"
},
{
"category": "external",
"summary": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q",
"url": "https://github.com/websockets/ws/security/advisories/GHSA-3h5v-q93c-6h6q"
}
],
"release_date": "2024-06-16T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-07-17T13:09:39+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:4591"
},
{
"category": "workaround",
"details": "The issue can be mitigated by reducing the maximum allowed length of the request headers using the --max-http-header-size=size or the maxHeaderSize options so that no more headers than the server.maxHeadersCount limit can be sent. The issue can be mitigated also by seting server.maxHeadersCount to 0.",
"product_ids": [
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:5fbef84c4a88ad4ea88a1b2232cc0d6630fa47c8e3ae874a485c971c6d5951b9_ppc64le",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:ac0c3a8d86539bc4668e1a6de82e1f8439a1fbbb17a3b4102cabf078f021b41f_amd64",
"9Base-RHODF-4.16:odf4/cephcsi-rhel9@sha256:c94f20ad65f5411c7cabafd574e52f2fcb52d2f917003ae71adc736028f962bf_s390x",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:061fc659ec847d38201a7b049b813df1fddac1e97d2caddaaac3d91d5e05fd46_amd64",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:3cc0e4ec3f46d066bfc5546a2efdab3a44aa38f2d6dc961509bee8f7f9cb5ddb_s390x",
"9Base-RHODF-4.16:odf4/mcg-operator-bundle@sha256:7c00300daa75158d7a406317be71f2a8932a613b769144ae92a5ae225f4feb1e_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:193a773d4f1ed8ec6097579507dddd3863301ec546e325e38b5290235f06c802_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:968deb95e9fde6ba12565e3ef601bfc60551ac6ac7c122b2bdacea09b6574266_arm64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:d608a1d128733b31b552d8410c1d95cb740646cea32b79ee401d2de178e08ca9_amd64",
"9Base-RHODF-4.16:odf4/mcg-rhel9-operator@sha256:f717a955a7ca2c3b1eac84e4b192ab38dcf1e98f6baea0ef592071c60f389bd1_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:46486b7e3b087bfec9c7b0dd4547af1190cee2be55dee7400ec90e6dc4b434f4_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a20b4235cee3193794be549c645164c2811a044498a777591437ff440264a7da_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-console-rhel9@sha256:a552dbccf217e8deaec318bcaf9b40877d3be1e88d091ae1684959f48367e0f2_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:8f650cf5915d5b7a15931e4a11d7c6be43d16068132f4cb4ef3e0c3e3cfbc17c_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:978017d3524aded83f4c63710e0b10dc2a453a22b5bc9ef801c7e70ac13aee40_s390x",
"9Base-RHODF-4.16:odf4/ocs-client-operator-bundle@sha256:9c3b15da5ddf22af93ae1617329ef41fddb4e6c00bbf9ea12567c4fc2c14cfdf_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:41c7883aafc2938852f5920ac2a178e1b0f39e0acdb817678696adec90fa2686_amd64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:95a047d3be90468e15a9f246f8e0fbfd159f18f7a9841d07c75e6c3f30c7c80a_arm64",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:d383069c5e89e051a15e95e61e9bd5197edf4f91fde60df8b8ed7d4e8269452e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-client-rhel9-operator@sha256:f2ab9f9eb9e502f0d78b32159dfc5aeae77ec9698ed3a2aeecd184407388f1e3_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:38d7fe0b8fa164df79d08fe2d20af60d7530e2691e7d4f183d71f138a00a128e_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:a8f0e209e62e02a20648f982360e5b5ec7e62c294b4f7eb7df53ccd0bb750008_s390x",
"9Base-RHODF-4.16:odf4/ocs-metrics-exporter-rhel9@sha256:cd6bbc33a59480c1c504a88f86ca4bb51de037db3c993581d18ee7e887c96dcc_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:2bd43ed14d916a13f2d631f8dc350313c47619033134463399d76e77688f4c2e_amd64",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:92c7cf4ce69644ffa955c78b1e18aab5f9c3a843f889703a326ea9e6697455af_s390x",
"9Base-RHODF-4.16:odf4/ocs-operator-bundle@sha256:e1abb6a3be342350f7b3f641f9e036e2bd998e5fd6bd215730f3d39526e1d16f_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a714121fa385acb6fe75bb74f402be8cf6da85372fd4a34abfbb9b546782e9c0_amd64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:a9cdb157400f7826b8c5075591d26dd9e25628e94189de3b90c8e9389e3181ed_ppc64le",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:ab289e798f909cf238f410984b7388db2f0a20794a3d55a06031fd9771efeaf7_arm64",
"9Base-RHODF-4.16:odf4/ocs-rhel9-operator@sha256:f5e5b787848d5838aaaeb58e3b8836ff67b4fcf9a2d3c9d19f27e06818fdf295_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:4b79f14a1d5130673921c4d711c0b919377307dd6d76d14386f9f83a5e1b4ecd_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:60ca8f2d341b1f1a09710a37c40f4c803c6b1b2d09fc1a7f53f9a979ad6643d6_s390x",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:92bd51fa0a6ee62be70dda32f5d922e70f4aea630b70bc7b5b74d0bf3c1d3a66_amd64",
"9Base-RHODF-4.16:odf4/odf-cli-rhel9@sha256:f518a439b56354f01a647d3c0550c909b42a879607982ce50bbbc0b6403a58f9_arm64",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5700bc3e6aadfa1890bb81bcc70f0ef026b5bd0d38f1e4bd35d04d5ceee7808d_ppc64le",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:5972ba4c75e54f1670ec5ffb0a5a749a6992967ea0dd6e5d442019fa64dc1515_s390x",
"9Base-RHODF-4.16:odf4/odf-console-rhel9@sha256:67108dd96a553925f2759cc5359447315aff09e7628a8228e71b04a8dee25f63_amd64",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:43334d92af32e97a11691d0fa7069746d59d6f73a0a2c0b97bbbfdc7937f117a_ppc64le",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8512465ad8828593d0f4b6d4208a6c60a0f297f70ef26a0c4c874f6ddf4798d2_s390x",
"9Base-RHODF-4.16:odf4/odf-cosi-sidecar-rhel9@sha256:8b0583cf72b39299e6769f9c9fdc4321b7e384405aec8d1519d4ea5ac060fd05_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:ab568f027f842174927e1ccc7ca00448068e9241f40f53034d9ba74aaf062aa1_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:c4b5c7247825d7265f83ae5fb5e8a0f62fbb69cdbaf535d0d83320b817d7ef48_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-operator-bundle@sha256:cf07146641dab9fe090c2b44d8f533375a5d04b8fcdedb42f75f10916b5b6ba6_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:3a4ec2b8d194134fc4a3cb9077306ba71eaef4e4544177f590c73ae7e40d490b_s390x",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:87e2d4e45b3d308e6937791d906c277df67c45321c7b760cca528f36e68d263d_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:8a090360648affdb24c12d7c2efaffc07bc21deb8b29f4ad3c12cf0a5ee6e19b_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-rhel9-operator@sha256:aff1de5e9ad24bbfacda0bf34bb6b28d27c3f9ce646ed53e93b4c87eb0bda93c_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:162f35a85baabd9055c53717463c908247769a9bf617a4b457adf398d2e972be_amd64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:272f038ebe7fd778c6c24dcc27524f3aa807465576177681b8b80a6adb32be99_ppc64le",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:41064d2db3c4c1e651f2df89d6cd4a19027c6930edc6ab66b5535a2cd7f39f49_arm64",
"9Base-RHODF-4.16:odf4/odf-csi-addons-sidecar-rhel9@sha256:859301df4f104e3d36efc2446929c86805e586c3c5ac07548d0277442d5df6ca_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:2ca34569661d388d50cc0e9f5949ea7a404ceb266981855b3251c329dab88e11_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:d77cb43b5019248b790134edc980d7fb260c4dcb884f8e54d27c33b876a5f897_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-console-rhel9@sha256:f9f73b9781288b1a52b06edb752efc9475a315e1dd9a445e28cc47d571762cfc_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:1ab09e10bfe23ed2e08513d887bd36c4bed003d6bcb7f1885364ef5a606ec010_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:9a42214d500a600785bb9a7bdd5b9580a5f8cfbf16980eb48bde3ae4ce855f3c_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-operator-bundle@sha256:e87b8be96be2c5042af949785dd0c543e28d9432914a9543b08fd38d4a1e11ff_ppc64le",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:2eb40b0c565a4d150229ab504adfb2e0a2b4a5b25ff8ccb690e6d2dcae3bf424_amd64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:36a0a82ab0c1e9d67d31aa8afe81bc1485541e3aefa221dbbc2a6822edfe8515_arm64",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:8a8f7e1126adc73d210cdf8454c64356e2229e3aefc5bb4ba5a8bc7755a5d469_s390x",
"9Base-RHODF-4.16:odf4/odf-multicluster-rhel9-operator@sha256:ef3d403c990fa7f2af167a123af043970cadc00b78b454b93dd9a4bca2699d2b_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:0ee210a535f1f11de40e1a0ee55a10855ce13c09dab9791ee4d35c59949ca934_ppc64le",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:3dc59c38e0cde2c9974d3fa5a7ce1c9f98589a5aeb486fdc8a8e7717656522fe_arm64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:44c6bb264bbbd0ad67978dd2b4e01c530e653baf14b15f8a1eddff675fa760bd_amd64",
"9Base-RHODF-4.16:odf4/odf-must-gather-rhel9@sha256:631643362d4345fdefb3fb34416ca09626b634c92fde970e1494a95fe5bdfc87_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:21c8ba4e41692cc24ce0127b4198413183451eff19a461941e9efb6bd140bfb4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:24d9bcb0da6e061f9de31768e94b660f955323e130f7eb0fc9e8746c1709d3f8_s390x",
"9Base-RHODF-4.16:odf4/odf-operator-bundle@sha256:8ef36128140b9a90403fb672178d07be7fd16ddf9809ec628a693e0e2dd6d4a9_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:078bd92b92c28c3899986f4c6755950f3de044ca6b7214353cc0e84d2a67d570_amd64",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:0b08f6aba84c9f64b3253f5f23efaa0bba47be37f2582378509849b73db165e4_ppc64le",
"9Base-RHODF-4.16:odf4/odf-prometheus-operator-bundle@sha256:64ca1e84e10bbc7522da216e4965658e06c540fce8c18f2976dab5c3236ea256_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:0976ab8ba60319bf9ef20503de0fa249055e18a82ab36113affe7ad177b3f187_s390x",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:1d7f610fea74bb30b0276aa40556d9c03762c10f3bb71618afb5e6f5af718688_amd64",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:cf81ea45b333424981129e464f1374739a4f309efdcb26b9f7df2df4d346c1a9_ppc64le",
"9Base-RHODF-4.16:odf4/odf-rhel9-operator@sha256:dd9ca8286f54ba8e4151414afc65cbc4d619430676ab2735afc2a1e086b17921_arm64",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:1d89cd1a73d1bbd66988ce2224de39b799ecfa1cfe96d0ec2619ccc059c11d20_ppc64le",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:efdcf383abcb962ea0fdb92a9fa31f60a150a2c48174303881b550e5d9dec6f7_s390x",
"9Base-RHODF-4.16:odf4/odr-cluster-operator-bundle@sha256:f500d5f16ea39d262ad4c52a9be03953e6e7ffa0f4349860976c41a70d8bb0e5_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:491a5b629d9777815ee6d28356cf82a7fd7939f2a39e65ae833440af1831b1db_s390x",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:80f47a30616834100466219c9e4d8c67fcef9554b2075c2bf81905c86b03d46b_amd64",
"9Base-RHODF-4.16:odf4/odr-hub-operator-bundle@sha256:cd38debd1e2088a81a31ac95eda219ad9d58d255ac0ed157a804837b00a87ac0_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:096d6e38c34c0c89e2b2e49d6c8b61acf9f88033d3b2814eefa62abee30d4993_ppc64le",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:4d03e157d3ed69eef8a8ee8a6c8f9e0746c16baa6ccff7c5c8a7457e9a8b9a56_s390x",
"9Base-RHODF-4.16:odf4/odr-recipe-operator-bundle@sha256:d556581772224fe60606ece392a210f1a3b3de01a26959197c594634694d6ebb_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:0ef121586e961be58480d76ba988719daaa82e606a8cc3649a0d01ef75227bc0_amd64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:3452dc4a07cb296d2102f3fbc34865496dcd418f602dc117cb327893f6464e71_ppc64le",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:61fb5b6ebf9ee44b9271eb3526cb3175c9a135f86223e165c05b73a390f617ea_arm64",
"9Base-RHODF-4.16:odf4/odr-rhel9-operator@sha256:c6b46eca6dfec3a8fb48b61393707e11e8cc573aad7eb6ff95c4661092e913f0_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:79ad5ac0ee525277a8a1bd550428a5e0a04da73aa1d9df23d085ec888d12d45b_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:911c38bf283079dd024087bda48a37ddf0ec981da4589596565706e5dfcd6dad_ppc64le",
"9Base-RHODF-4.16:odf4/rook-ceph-operator-bundle@sha256:c1f4872828308bf7f0477697fb74a0ab7c3f595e2c33e29ee873232efca1960d_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:0df69e6e3d2add83c5a74faff76837a49333184b1d170acee968d4c064933bcf_amd64",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:5c3c4bbf1bf820995a13588d02a8cf692e1343da25def005dab981078b14d970_s390x",
"9Base-RHODF-4.16:odf4/rook-ceph-rhel9-operator@sha256:e1a7fd2bf349908c710237a1f832a4e161e049d09691d36c453bc8ddb0e0eebe_ppc64le"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:088b9e19fc16a4fbb655b81ab1fbe78aa82ebce2ad5ad0df67fc8b361b4fe170_ppc64le",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:2c29d14c5d64f810cc68fdb894700819f5122a354d5cbb473cf73f517f5315e9_amd64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:5c2628c9c3de8ff9eaf6c727eaa2b4382741f21afeb4154329714b404fb4e1df_arm64",
"9Base-RHODF-4.16:odf4/mcg-core-rhel9@sha256:f4a85d993ae326570a5e4dd8bdf9e5cec586c2f8b55a962940457f39787d6af8_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "nodejs-ws: denial of service when handling a request with many HTTP headers"
}
]
}
rhsa-2024_7164
Vulnerability from csaf_redhat
Published
2024-09-26 03:46
Modified
2024-11-15 20:25
Summary
Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.4 security and bug fix update
Notes
Topic
The Migration Toolkit for Containers (MTC) 1.8.4 is now available.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.
Security Fix(es) from Bugzilla:
* golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)
* webpack-dev-middleware: lack of URL validation may lead to file leak (CVE-2024-29180)
* express: cause malformed URLs to be evaluated (CVE-2024-29041)
* axios: axios: Server-Side Request Forgery (CVE-2024-39338)
* golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect (CVE-2023-45289)
* jose-go: improper handling of highly compressed data (CVE-2024-28180)
* follow-redirects: Possible credential leak (CVE-2024-28849)
* moby: external DNS requests from 'internal' networks could lead to data exfiltration (CVE-2024-29018)
* containers/image: digest type does not guarantee valid type (CVE-2024-3727)
* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)
* braces: fails to limit the number of characters it can handle (CVE-2024-4068)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "The Migration Toolkit for Containers (MTC) 1.8.4 is now available.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The Migration Toolkit for Containers (MTC) enables you to migrate Kubernetes resources, persistent volume data, and internal container images between OpenShift Container Platform clusters, using the MTC web console or the Kubernetes API.\n\nSecurity Fix(es) from Bugzilla:\n\n* golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288)\n\n* webpack-dev-middleware: lack of URL validation may lead to file leak (CVE-2024-29180)\n\n* express: cause malformed URLs to be evaluated (CVE-2024-29041)\n\n* axios: axios: Server-Side Request Forgery (CVE-2024-39338)\n\n* golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect (CVE-2023-45289)\n\n* jose-go: improper handling of highly compressed data (CVE-2024-28180)\n\n* follow-redirects: Possible credential leak (CVE-2024-28849)\n\n* moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration (CVE-2024-29018)\n\n* containers/image: digest type does not guarantee valid type (CVE-2024-3727)\n\n* golang: net: malformed DNS message can cause infinite loop (CVE-2024-24788)\n\n* braces: fails to limit the number of characters it can handle (CVE-2024-4068)\n\n* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2024:7164",
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2268018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268018"
},
{
"category": "external",
"summary": "2268273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268273"
},
{
"category": "external",
"summary": "2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "2269576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269576"
},
{
"category": "external",
"summary": "2270591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270591"
},
{
"category": "external",
"summary": "2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "2274767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"category": "external",
"summary": "2279814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279814"
},
{
"category": "external",
"summary": "2280600",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280600"
},
{
"category": "external",
"summary": "2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "2295302",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295302"
},
{
"category": "external",
"summary": "2299624",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299624"
},
{
"category": "external",
"summary": "2299625",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299625"
},
{
"category": "external",
"summary": "2299628",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299628"
},
{
"category": "external",
"summary": "2299668",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2299668"
},
{
"category": "external",
"summary": "MIG-1592",
"url": "https://issues.redhat.com/browse/MIG-1592"
},
{
"category": "external",
"summary": "MIG-1593",
"url": "https://issues.redhat.com/browse/MIG-1593"
},
{
"category": "external",
"summary": "MIG-1598",
"url": "https://issues.redhat.com/browse/MIG-1598"
},
{
"category": "external",
"summary": "MIG-1610",
"url": "https://issues.redhat.com/browse/MIG-1610"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2024/rhsa-2024_7164.json"
}
],
"title": "Red Hat Security Advisory: Migration Toolkit for Containers (MTC) 1.8.4 security and bug fix update",
"tracking": {
"current_release_date": "2024-11-15T20:25:56+00:00",
"generator": {
"date": "2024-11-15T20:25:56+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2024:7164",
"initial_release_date": "2024-09-26T03:46:53+00:00",
"revision_history": [
{
"date": "2024-09-26T03:46:53+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2024-09-26T03:46:53+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-15T20:25:56+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "8Base-RHMTC-1.8",
"product": {
"name": "8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhmt:1.8::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Migration Toolkit"
},
{
"branches": [
{
"category": "product_version",
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"product": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"product_id": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-controller-rhel8\u0026tag=v1.8.4-22"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"product": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"product_id": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-hook-runner-rhel8\u0026tag=v1.8.4-8"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"product": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"product_id": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-log-reader-rhel8\u0026tag=v1.8.4-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"product": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"product_id": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-must-gather-rhel8\u0026tag=v1.8.4-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"product": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"product_id": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-openvpn-rhel8\u0026tag=v1.8.4-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"product": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"product_id": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rhel8-operator\u0026tag=v1.8.4-16"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"product": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"product_id": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-operator-bundle\u0026tag=v1.8.4-33"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"product": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"product_id": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-registry-rhel8\u0026tag=v1.8.4-11"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"product": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"product_id": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-rsync-transfer-rhel8\u0026tag=v1.8.4-9"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"product": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"product_id": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-ui-rhel8\u0026tag=v1.8.4-10"
}
}
},
{
"category": "product_version",
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"product": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"product_id": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"product_identification_helper": {
"purl": "pkg:oci/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9?arch=amd64\u0026repository_url=registry.redhat.io/rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8\u0026tag=v1.8.4-9"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
},
"product_reference": "rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64"
},
"product_reference": "rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64"
},
"product_reference": "rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64"
},
"product_reference": "rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64"
},
"product_reference": "rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64"
},
"product_reference": "rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
},
"product_reference": "rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64"
},
"product_reference": "rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64"
},
"product_reference": "rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
},
"product_reference": "rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64 as a component of 8Base-RHMTC-1.8",
"product_id": "8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
},
"product_reference": "rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64",
"relates_to_product_reference": "8Base-RHMTC-1.8"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-25211",
"cwe": {
"id": "CWE-346",
"name": "Origin Validation Error"
},
"discovery_date": "2024-07-02T21:00:45+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2295302"
}
],
"notes": [
{
"category": "description",
"text": "parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandles a wildcard at the end of an origin string, e.g., https://example.community/* is allowed when the intention is that only https://example.com/* should be allowed, and http://localhost.example.com/* is allowed when the intention is that only http://localhost/* should be allowed.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "github.com/gin-contrib/cors: Gin mishandles a wildcard in the origin string in github.com/gin-contrib/cors",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2019-25211"
},
{
"category": "external",
"summary": "RHBZ#2295302",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2295302"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2019-25211",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25211"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2019-25211",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25211"
},
{
"category": "external",
"summary": "https://github.com/advisories/GHSA-869c-j7wc-8jqv",
"url": "https://github.com/advisories/GHSA-869c-j7wc-8jqv"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/commit/27b723a473efd80d5a498fa9f5933c80204c850d",
"url": "https://github.com/gin-contrib/cors/commit/27b723a473efd80d5a498fa9f5933c80204c850d"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/compare/v1.5.0...v1.6.0",
"url": "https://github.com/gin-contrib/cors/compare/v1.5.0...v1.6.0"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/pull/106",
"url": "https://github.com/gin-contrib/cors/pull/106"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/pull/57",
"url": "https://github.com/gin-contrib/cors/pull/57"
},
{
"category": "external",
"summary": "https://github.com/gin-contrib/cors/releases/tag/v1.6.0",
"url": "https://github.com/gin-contrib/cors/releases/tag/v1.6.0"
}
],
"release_date": "2024-07-02T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "github.com/gin-contrib/cors: Gin mishandles a wildcard in the origin string in github.com/gin-contrib/cors"
},
{
"acknowledgments": [
{
"names": [
"Bartek Nowotarski"
],
"organization": "nowotarski.info"
}
],
"cve": "CVE-2023-45288",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-03-06T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268273"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was discovered with the implementation of the HTTP/2 protocol in the Go programming language. There were insufficient limitations on the amount of CONTINUATION frames sent within a single stream. An attacker could potentially exploit this to cause a Denial of Service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat rates the security impact of this vulnerability as Important due to the worst case scenario resulting in a denial of service. It is simple to exploit, could significantly impact availability, and there is not a suitable mitigation for all use cases. Once an attack has ended, the system should return to normal operations on its own.\n\nThis vulnerability only impacts servers which have HTTP/2 enabled. It stems from an imperfect definition of the protocol. As the Go programming language is widely utilized across nearly every major Red Hat offering, a full listing of impacted packages will not be provided. Therefore, the \u201cAffected Packages and Issued Red Hat Security Errata\u201d section contains a simplified list of what offerings need to remediate this vulnerability. Every impacted offering has at least one representative component listed, but potentially not all of them. Rest assured that Red Hat is committed to remediating this vulnerability across our entire portfolio.\n\nMany components are rated as Low impact due to configurations which reduce the attack surface or significantly increase the difficulty of exploitation. A summary of these scenarios are:\n* The container includes a package that provides a vulnerable webserver, but it is not used or running during operation\n* HTTP/2 is disabled by default and is not supported\n* Only a client implementation is provided, which is not vulnerable\n* A vulnerable module (either golang.org/net/http or golang.org/x/net/http2) is included, but disabled\n* Access to a vulnerable server is restricted within the container (loopback only connections)\n* Golang is available in the container but is not used\n\n\nWithin the Red Hat OpenShift Container Platform, the majority of vulnerable components are not externally accessible. This means an attacker must already have access to a container within your environment to exploit this vulnerability. However, the ose-hyperkube (openshift-enterprise-hyperkube) container is externally accessible, so there are less barriers to exploitation. Fixes for this specific container are already available.\n\nWithin Red Hat Ansible Automation Platform, the impacted component is Receptor. The impact has been reduced to Low as the vulnerable code is present, but not utilized. There are three potential exposures within this component:\n* Receptor utilizes QUIC a UDP based protocol which does not run over HTTP/2\n* Receptor utilizes the x/net/ipv4 and ipv6 packages, both of which are not affected",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "RHBZ#2268273",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268273"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45288"
},
{
"category": "external",
"summary": "https://nowotarski.info/http2-continuation-flood/",
"url": "https://nowotarski.info/http2-continuation-flood/"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2687",
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"category": "external",
"summary": "https://www.kb.cert.org/vuls/id/421644",
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"release_date": "2024-04-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "In some environments where http/2 support is not required, it may be possible to disable this feature to reduce risk.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS"
},
{
"cve": "CVE-2023-45289",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-03-05T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268018"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Go\u0027s net/http/cookiejar standard library package. When following an HTTP redirect to a domain that is not a subdomain match or an exact match of the initial domain, an http.Client does not forward sensitive headers such as \"Authorization\" or \"Cookie\". For example, a redirect from foo.com to www.foo.com will forward the Authorization header, but a redirect to bar.com will not. A maliciously crafted HTTP redirect could cause sensitive headers to be unexpectedly forwarded.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-45289"
},
{
"category": "external",
"summary": "RHBZ#2268018",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268018"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-45289",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45289"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-45289",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-45289"
}
],
"release_date": "2024-03-05T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net/http/cookiejar: incorrect forwarding of sensitive headers and cookies on HTTP redirect"
},
{
"cve": "CVE-2024-3727",
"cwe": {
"id": "CWE-354",
"name": "Improper Validation of Integrity Check Value"
},
"discovery_date": "2024-04-12T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2274767"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the github.com/containers/image library. This flaw allows attackers to trigger unexpected authenticated registry accesses on behalf of a victim user, causing resource exhaustion, local path traversal, and other attacks.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "containers/image: digest type does not guarantee valid type",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Some conditions are necessary for this attack to occur, such as the attacker being able to upload malicious images to the registry and persuade a victim to pull them. Hence, the severity of this flaw was rated as Moderate.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-3727"
},
{
"category": "external",
"summary": "RHBZ#2274767",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2274767"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-3727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3727"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-3727"
}
],
"release_date": "2024-05-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "containers/image: digest type does not guarantee valid type"
},
{
"cve": "CVE-2024-4068",
"cwe": {
"id": "CWE-1050",
"name": "Excessive Platform Resource Consumption within a Loop"
},
"discovery_date": "2024-05-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2280600"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the NPM package `braces.` It fails to limit the number of characters it can handle, which could lead to memory exhaustion. In `lib/parse.js,` if a malicious user sends \"imbalanced braces\" as input, the parsing will enter a loop, causing the program to start allocating heap memory without freeing it at any moment of the loop. Eventually, the JavaScript heap limit is reached, and the program will crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "braces: fails to limit the number of characters it can handle",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-4068"
},
{
"category": "external",
"summary": "RHBZ#2280600",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2280600"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-4068",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4068"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-4068"
},
{
"category": "external",
"summary": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/",
"url": "https://devhub.checkmarx.com/cve-details/CVE-2024-4068/"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308",
"url": "https://github.com/micromatch/braces/blob/98414f9f1fabe021736e26836d8306d5de747e0d/lib/parse.js#L308"
},
{
"category": "external",
"summary": "https://github.com/micromatch/braces/issues/35",
"url": "https://github.com/micromatch/braces/issues/35"
}
],
"release_date": "2024-03-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "braces: fails to limit the number of characters it can handle"
},
{
"cve": "CVE-2024-24788",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"discovery_date": "2024-05-09T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2279814"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the net package of the Go stdlib. When a malformed DNS message is received as a response to a query, the Lookup functions within the net package can get stuck in an infinite loop. This issue can lead to resource exhaustion and denial of service (DoS) conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "golang: net: malformed DNS message can cause infinite loop",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-24788"
},
{
"category": "external",
"summary": "RHBZ#2279814",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2279814"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-24788",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24788"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-24788",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-24788"
},
{
"category": "external",
"summary": "https://pkg.go.dev/vuln/GO-2024-2824",
"url": "https://pkg.go.dev/vuln/GO-2024-2824"
}
],
"release_date": "2024-05-08T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "golang: net: malformed DNS message can cause infinite loop"
},
{
"cve": "CVE-2024-28180",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"discovery_date": "2024-03-10T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2268854"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Jose due to improper handling of highly compressed data. This issue could allow an attacker to send a JWE containing compressed data that uses large amounts of memory and CPU when decompressed by Decrypt or DecryptMulti.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "jose-go: improper handling of highly compressed data",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28180"
},
{
"category": "external",
"summary": "RHBZ#2268854",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2268854"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28180"
},
{
"category": "external",
"summary": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g",
"url": "https://github.com/go-jose/go-jose/security/advisories/GHSA-c5q2-7r4c-mv6g"
}
],
"release_date": "2024-03-09T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "jose-go: improper handling of highly compressed data"
},
{
"cve": "CVE-2024-28849",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"discovery_date": "2024-03-14T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2269576"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the follow-redirects package. While processing the cross-domain redirection, `follow-redirects` clears authorization headers, however, it misses clearing proxy-authentication headers, which contain credentials as well. This issue may lead to credential leaking, having a high impact on data confidentiality.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "follow-redirects: Possible credential leak",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28849"
},
{
"category": "external",
"summary": "RHBZ#2269576",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2269576"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28849",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28849"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28849",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28849"
},
{
"category": "external",
"summary": "https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-cxjh-pqwp-8mfp",
"url": "https://github.com/follow-redirects/follow-redirects/security/advisories/GHSA-cxjh-pqwp-8mfp"
}
],
"release_date": "2024-03-14T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "follow-redirects: Possible credential leak"
},
{
"cve": "CVE-2024-28863",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"discovery_date": "2024-06-20T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2293200"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in ISAACS\u0027s node-tar, where it is vulnerable to a denial of service, caused by the lack of folder count validation. The vulnerability exists due to the application not properly controlling the consumption of internal resources while parsing a tar file. By sending a specially crafted request, a remote attacker can trigger resource exhaustion and perform a denial of service (DoS) attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-28863"
},
{
"category": "external",
"summary": "RHBZ#2293200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2293200"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-28863",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28863"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-28863"
},
{
"category": "external",
"summary": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36",
"url": "https://github.com/isaacs/node-tar/security/advisories/GHSA-f5x3-32g6-xq36"
},
{
"category": "external",
"summary": "https://security.netapp.com/advisory/ntap-20240524-0005/",
"url": "https://security.netapp.com/advisory/ntap-20240524-0005/"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "node-tar: denial of service while parsing a tar file due to lack of folders depth validation"
},
{
"cve": "CVE-2024-29018",
"cwe": {
"id": "CWE-669",
"name": "Incorrect Resource Transfer Between Spheres"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270591"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in Moby due to excessive data output in external DNS requests from \"internal\" networks, enabling unauthorized access to sensitive system information by remote attackers. This flaw allows attackers to gain access to sensitive information by exploiting incorrect resource transfer between spheres through specially crafted requests.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29018"
},
{
"category": "external",
"summary": "RHBZ#2270591",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270591"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29018",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29018"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29018",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29018"
},
{
"category": "external",
"summary": "https://github.com/moby/moby/pull/46609",
"url": "https://github.com/moby/moby/pull/46609"
},
{
"category": "external",
"summary": "https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx",
"url": "https://github.com/moby/moby/security/advisories/GHSA-mq39-4gv4-mvpx"
}
],
"release_date": "2024-03-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration"
},
{
"cve": "CVE-2024-29041",
"cwe": {
"id": "CWE-601",
"name": "URL Redirection to Untrusted Site (\u0027Open Redirect\u0027)"
},
"discovery_date": "2024-06-07T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2290901"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Express.js minimalist web framework for node. Versions of Express.js before 4.19.0 and all pre-release alpha and beta versions of 5.0 are affected by an open redirect vulnerability using malformed URLs. When a user of Express performs a redirect using a user-provided URL, Express performs an encode [using `encodeurl`](https://github.com/pillarjs/encodeurl) on the contents before passing it to the `location` header. This issue can cause malformed URLs to be evaluated in unexpected ways by common redirect allow list implementations in Express applications, leading to an Open Redirect via bypass of a properly implemented allow list. The main method impacted is `res.location()`, but this is also called from within `res.redirect()`. The vulnerability is fixed in 4.19.2 and 5.0.0-beta.3.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "express: cause malformed URLs to be evaluated",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Red Hat Fuse 7 only uses express as part of build time development dependency, it is not part of the final product delivery.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29041"
},
{
"category": "external",
"summary": "RHBZ#2290901",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2290901"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29041"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29041"
},
{
"category": "external",
"summary": "https://expressjs.com/en/4x/api.html#res.location",
"url": "https://expressjs.com/en/4x/api.html#res.location"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd",
"url": "https://github.com/expressjs/express/commit/0867302ddbde0e9463d0564fea5861feb708c2dd"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94",
"url": "https://github.com/expressjs/express/commit/0b746953c4bd8e377123527db11f9cd866e39f94"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/pull/5539",
"url": "https://github.com/expressjs/express/pull/5539"
},
{
"category": "external",
"summary": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc",
"url": "https://github.com/expressjs/express/security/advisories/GHSA-rv95-896h-c2vc"
},
{
"category": "external",
"summary": "https://github.com/koajs/koa/issues/1800",
"url": "https://github.com/koajs/koa/issues/1800"
}
],
"release_date": "2024-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Red Hat has investigated whether a possible mitigation exists for this issue, and has not been able to identify a practical example. Please update the affected package as soon as possible.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.1,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "express: cause malformed URLs to be evaluated"
},
{
"cve": "CVE-2024-29180",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2024-03-21T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2270863"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the webpack-dev-middleware package, where it failed to validate the supplied URL address sufficiently before returning local files. This flaw allows an attacker to craft URLs to return arbitrary local files from the developer\u0027s machine. The lack of normalization before calling the middleware also allows the attacker to perform path traversal attacks on the target environment.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "webpack-dev-middleware: lack of URL validation may lead to file leak",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The vulnerability in webpack-dev represents a important security issue due to its potential to expose sensitive files and compromise developer machines. By failing to validate URLs and normalize paths effectively, the middleware allows attackers to craft malicious requests that can retrieve arbitrary local files or perform unauthorized path traversal. This could lead to unauthorized access to confidential information, including source code, configuration files, and even system-level files. Given the widespread use of webpack-dev-middleware in web development environments, addressing this vulnerability promptly is important to prevent serious data breaches and protect the integrity of development processes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-29180"
},
{
"category": "external",
"summary": "RHBZ#2270863",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2270863"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-29180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29180"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-29180"
},
{
"category": "external",
"summary": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6",
"url": "https://github.com/webpack/webpack-dev-middleware/security/advisories/GHSA-wr3j-pwj9-hqq6"
}
],
"release_date": "2024-03-21T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "webpack-dev-middleware: lack of URL validation may lead to file leak"
},
{
"cve": "CVE-2024-39338",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"discovery_date": "2024-08-13T17:21:32.774718+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2304369"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in the Axios HTTP Client. It is vulnerable to a server-side request forgery attack (SSRF) caused by unexpected behavior where requests for path-relative URLs get processed as protocol-relative URLs. This flaw allows an attacker to perform arbitrary requests from the server, potentially accessing internal systems or exfiltrating sensitive data.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "axios: axios: Server-Side Request Forgery",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated as IMPORTANT because it can be exploited remotely with low complexity and without user interaction, it poses a significant risk to confidentiality.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"known_not_affected": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-39338"
},
{
"category": "external",
"summary": "RHBZ#2304369",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2304369"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-39338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39338"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-39338"
},
{
"category": "external",
"summary": "https://github.com/axios/axios/releases",
"url": "https://github.com/axios/axios/releases"
},
{
"category": "external",
"summary": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html",
"url": "https://jeffhacks.com/advisories/2024/06/24/CVE-2024-39338.html"
}
],
"release_date": "2024-08-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2024-09-26T03:46:53+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-controller-rhel8@sha256:a4025dfcd79bcb22e2ab91e1bc027c200f9c2741ed2c3a576a64cb24084c584e_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-hook-runner-rhel8@sha256:419c11ecd25664d16f77aec6589c9fa183832947766f75575dfab4bc059fe876_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-log-reader-rhel8@sha256:6886c4d68d7c6100b5eb7239ae8ce14871403a71ce69b35c42c0ce238b32ff87_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-must-gather-rhel8@sha256:08bb8048bb9fc00ba84e846fce7ce3e37506fbadf077b487c1d3d2dd607b2277_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-openvpn-rhel8@sha256:1e0cf80fab89615624cf7f9f62e72e161af4143ed1d6245db45f09ba8382dbc4_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-operator-bundle@sha256:9616b52c1d745b7bf37c0237a6cd2cde9a1d9e8dbfdb5e5cb49504805e706065_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-registry-rhel8@sha256:c7f229ac51306d667f9b766fb1a464686fa47eb06d5658dbe4977e25b4877b20_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rhel8-operator@sha256:79c957509adaff575917d1e70ec25965a4230c0a2deb9cd9007089dfc3ec39cc_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-rsync-transfer-rhel8@sha256:b556472a46fbac2508b8f36b975c8fdb26a77a2fc8bd43b2667f9151bf1cbc3f_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64",
"8Base-RHMTC-1.8:rhmtc/openshift-migration-velero-plugin-for-mtc-rhel8@sha256:8765eb907963a6677c1af44dee1168d635d243824396f73c829697b1582046e9_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"8Base-RHMTC-1.8:rhmtc/openshift-migration-ui-rhel8@sha256:db4903f395697e2eb244a0251ec1a5f89b12434501cb56889f2af37770f95f58_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "axios: axios: Server-Side Request Forgery"
}
]
}
rhsa-2024_8906
Vulnerability from csaf_redhat
Published
2024-11-05 17:49
Modified
2024-11-13 21:18
Summary
Red Hat Security Advisory: Satellite 6.16.0 release
Notes
Topic
A new release is now available for Red Hat Satellite 6.16 for RHEL 8 and 9.
Red Hat Product Security has rated this update as having a security impact
of Critical. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat Satellite is a system management solution that allows organizations to configure and maintain their systems without the necessity to provide public Internet access to their servers or other client systems. It performs provisioning and configuration management of predefined standard operating environments.
Security Fix(es):
* mosquitto: sending specific sequences of packets may trigger memory leak
(CVE-2024-8376)
* micromatch: vulnerable to Regular Expression Denial of Service (CVE-2024-4067)
urllib3: proxy-authorization request header is not stripped during cross-origin redirects (CVE-2024-37891)
* node-tar: denial of service while parsing a tar file due to lack of folders depth validation (CVE-2024-28863)
* python-django: Potential denial-of-service in django.utils.html.urlize() (CVE-2024-38875)
* python-django: Username enumeration through timing difference for users with unusable passwords (CVE-2024-39329)
* python-django: Potential directory-traversal in django.core.files.storage.Storage.save() (CVE-2024-39330)
* python-django: Potential denial-of-service in django.utils.translation.get_supported_language_variant() (CVE-2024-39614)
* github.com/jaraco/zipp: Denial of Service (infinite loop) via crafted zip file in jaraco/zipp (CVE-2024-5569)
* puppet-foreman: An authentication bypass vulnerability exists in Foreman (CVE-2024-7012)
* python-django: Potential SQL injection in QuerySet.values() and values_list() (CVE-2024-42005)
* grpc: client communicating with a HTTP/2 proxy can poison the HPACK table between the proxy and the backend (CVE-2024-7246)
* puppet-pulpcore: An authentication bypass vulnerability exists in pulpcore (CVE-2024-7923)
* foreman: Read-only access to entire DB from templates (CVE-2024-8553)
Users of Red Hat Satellite are advised to upgrade to these updated packages, which fix these bugs.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.